General
-
Target
72d090790208bca5c801efa7f1586115_JaffaCakes118
-
Size
292KB
-
Sample
240726-gjzd4atarb
-
MD5
72d090790208bca5c801efa7f1586115
-
SHA1
9b3067209055186b956b0dd3092faf525ecc75ff
-
SHA256
a0fd2b175087dabf6564f04b380669df8a644b00f24a3283a19574388e5b3b8e
-
SHA512
5d9fbb9c253f7987f0c3cc282f90aae03741fc7456ffbf260a9ee99864bd9d0fbb964091c1025a9dbd0eff7c9fbb16af4ba5b883b252f381ef26a8ce7110a44b
-
SSDEEP
6144:tOYlw7OUaUP9VO3oTUX5K/fObT/bGilTBpSthkZ7xCrLOzpqnI3YxZkoVv/X:tBlw7kUV03owX5K/fObT/bGi4hkZ7xCx
Malware Config
Targets
-
-
Target
72d090790208bca5c801efa7f1586115_JaffaCakes118
-
Size
292KB
-
MD5
72d090790208bca5c801efa7f1586115
-
SHA1
9b3067209055186b956b0dd3092faf525ecc75ff
-
SHA256
a0fd2b175087dabf6564f04b380669df8a644b00f24a3283a19574388e5b3b8e
-
SHA512
5d9fbb9c253f7987f0c3cc282f90aae03741fc7456ffbf260a9ee99864bd9d0fbb964091c1025a9dbd0eff7c9fbb16af4ba5b883b252f381ef26a8ce7110a44b
-
SSDEEP
6144:tOYlw7OUaUP9VO3oTUX5K/fObT/bGilTBpSthkZ7xCrLOzpqnI3YxZkoVv/X:tBlw7kUV03owX5K/fObT/bGi4hkZ7xCx
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2