General
-
Target
7633e9ca0c2e9aeb8b11aae1b96b57da_JaffaCakes118
-
Size
96KB
-
Sample
240726-3jq9daveqc
-
MD5
7633e9ca0c2e9aeb8b11aae1b96b57da
-
SHA1
707aff6996ff6f545441447407b6983c853c3d52
-
SHA256
0cdbb700ac6ba19ab7e2620f33ad616a33a9e821577848fdb502ffa42cb65146
-
SHA512
b00b8f95d5c27d48fac02a8e893e901f91b565d705e19f1a89b74f1c61c55e76cc8f8570f05d143018cac26d78baf64e836e645adf681ea86c497f5d3a37f5f5
-
SSDEEP
1536:vhQBHHf6cO/hwkGulSc16l6u+NMMl/KlYv1Tq5ThFgNIjnZfD:Y0h5lu8CFFgCnND
Malware Config
Targets
-
-
Target
7633e9ca0c2e9aeb8b11aae1b96b57da_JaffaCakes118
-
Size
96KB
-
MD5
7633e9ca0c2e9aeb8b11aae1b96b57da
-
SHA1
707aff6996ff6f545441447407b6983c853c3d52
-
SHA256
0cdbb700ac6ba19ab7e2620f33ad616a33a9e821577848fdb502ffa42cb65146
-
SHA512
b00b8f95d5c27d48fac02a8e893e901f91b565d705e19f1a89b74f1c61c55e76cc8f8570f05d143018cac26d78baf64e836e645adf681ea86c497f5d3a37f5f5
-
SSDEEP
1536:vhQBHHf6cO/hwkGulSc16l6u+NMMl/KlYv1Tq5ThFgNIjnZfD:Y0h5lu8CFFgCnND
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2