General
-
Target
6ffd01a6f05b5837ad2151581ad6e68a_JaffaCakes118
-
Size
734KB
-
Sample
240725-rxzl5atepn
-
MD5
6ffd01a6f05b5837ad2151581ad6e68a
-
SHA1
348403f15c8b35c865eb9a1ae9242c1896ccece0
-
SHA256
cb10e81a6f877d7a1d29024d9db7cf9f856cdce0556c36e5cabe90cfc0048ba4
-
SHA512
0a1b0eb233ee538bd09904aa40fb5f3ea9cfe4b744bae53f3f6833bfa0604391f5759714102134e7d06997c197a88f5dd553161869d49a2352a039fd09392d1f
-
SSDEEP
12288:bkZMrKuT9eES2EGfKMlAvDuicrvXWKmtKDgGeIttwoPR5pWZhAIRXHYnrmb:bkZCXTqjMWvVcLXWxKlFttwYQRXHYrmb
Malware Config
Targets
-
-
Target
6ffd01a6f05b5837ad2151581ad6e68a_JaffaCakes118
-
Size
734KB
-
MD5
6ffd01a6f05b5837ad2151581ad6e68a
-
SHA1
348403f15c8b35c865eb9a1ae9242c1896ccece0
-
SHA256
cb10e81a6f877d7a1d29024d9db7cf9f856cdce0556c36e5cabe90cfc0048ba4
-
SHA512
0a1b0eb233ee538bd09904aa40fb5f3ea9cfe4b744bae53f3f6833bfa0604391f5759714102134e7d06997c197a88f5dd553161869d49a2352a039fd09392d1f
-
SSDEEP
12288:bkZMrKuT9eES2EGfKMlAvDuicrvXWKmtKDgGeIttwoPR5pWZhAIRXHYnrmb:bkZCXTqjMWvVcLXWxKlFttwYQRXHYrmb
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1