General
-
Target
72270f1885bd2aa9ac1c71862fd2b34b_JaffaCakes118
-
Size
204KB
-
Sample
240726-cbxs3sygkl
-
MD5
72270f1885bd2aa9ac1c71862fd2b34b
-
SHA1
8d34683d499d8627ce602510f4c756c901bb6c04
-
SHA256
f5437b3f1d6eb0bb1e4de37f2a8fcae003df52b76108135902dd83190be7a618
-
SHA512
639c010171f6cdd86f3b54faddcf2df8a8985f690b83274d2a88bb4b4856634abd1e99af04b44f5c46a59759a0054205357d7d0d6bd3d68f6c8eb964371edc7e
-
SSDEEP
3072:H/3G0tQ9nLHbB9W+U1TqEYzR/mkSYGrl9ymgYUWgG:HPG4QxL7B9W+U1RYzR/fSmlDG
Malware Config
Targets
-
-
Target
72270f1885bd2aa9ac1c71862fd2b34b_JaffaCakes118
-
Size
204KB
-
MD5
72270f1885bd2aa9ac1c71862fd2b34b
-
SHA1
8d34683d499d8627ce602510f4c756c901bb6c04
-
SHA256
f5437b3f1d6eb0bb1e4de37f2a8fcae003df52b76108135902dd83190be7a618
-
SHA512
639c010171f6cdd86f3b54faddcf2df8a8985f690b83274d2a88bb4b4856634abd1e99af04b44f5c46a59759a0054205357d7d0d6bd3d68f6c8eb964371edc7e
-
SSDEEP
3072:H/3G0tQ9nLHbB9W+U1TqEYzR/mkSYGrl9ymgYUWgG:HPG4QxL7B9W+U1RYzR/fSmlDG
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2