General
-
Target
6fce5456a4d4cc9efbe2c54a6285575e_JaffaCakes118
-
Size
200KB
-
Sample
240725-qx1zhs1fnk
-
MD5
6fce5456a4d4cc9efbe2c54a6285575e
-
SHA1
94d53f16109c9675c7665e0edeb3cc366d627503
-
SHA256
a60bd719def2d763b572fee92f71b9e234ac8210b8c9e2fc986562f835e6990c
-
SHA512
8dd832f0d8e035aca8e602bffd23ddd423a7f6d3df741dba4b0db56062ae397adddc9ab78f861a8bd4a451c86a6dc352e80a334368b34f6a1d34dfb7da18a196
-
SSDEEP
3072:0CuTo/0Yxg0tQ9nLHbB9WPliBs2HWWEakGJm9wD0:0C3G4QxL7B9WPli+yWWEazjQ
Malware Config
Targets
-
-
Target
6fce5456a4d4cc9efbe2c54a6285575e_JaffaCakes118
-
Size
200KB
-
MD5
6fce5456a4d4cc9efbe2c54a6285575e
-
SHA1
94d53f16109c9675c7665e0edeb3cc366d627503
-
SHA256
a60bd719def2d763b572fee92f71b9e234ac8210b8c9e2fc986562f835e6990c
-
SHA512
8dd832f0d8e035aca8e602bffd23ddd423a7f6d3df741dba4b0db56062ae397adddc9ab78f861a8bd4a451c86a6dc352e80a334368b34f6a1d34dfb7da18a196
-
SSDEEP
3072:0CuTo/0Yxg0tQ9nLHbB9WPliBs2HWWEakGJm9wD0:0C3G4QxL7B9WPli+yWWEazjQ
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2