General
-
Target
74585aa7abf7b437b1dc065217a8b06b_JaffaCakes118
-
Size
734KB
-
Sample
240726-q8qmxsvhle
-
MD5
74585aa7abf7b437b1dc065217a8b06b
-
SHA1
3fc054149f804945c72ea6eb408eaaca630500eb
-
SHA256
c5ea55e68fe359b8491ef0cc90062c067319ebaaaf352e71cef0810241c84efb
-
SHA512
dda8f3d354b86b4cea087ca431bcf7fa8889766b9e2910a7cb12a81421c721da2b85092a7e40c73fd4a2009d5094685aa4ec6c13936b7e3ae806489eb399a5d7
-
SSDEEP
12288:bkZMrKuT9eES2EGfKMlAvDuicrvXXKmtKDgGeIttwoPR5pWZhAIRXHYnrmF:bkZCXTqjMWvVcLXXxKlFttwYQRXHYrmF
Malware Config
Targets
-
-
Target
74585aa7abf7b437b1dc065217a8b06b_JaffaCakes118
-
Size
734KB
-
MD5
74585aa7abf7b437b1dc065217a8b06b
-
SHA1
3fc054149f804945c72ea6eb408eaaca630500eb
-
SHA256
c5ea55e68fe359b8491ef0cc90062c067319ebaaaf352e71cef0810241c84efb
-
SHA512
dda8f3d354b86b4cea087ca431bcf7fa8889766b9e2910a7cb12a81421c721da2b85092a7e40c73fd4a2009d5094685aa4ec6c13936b7e3ae806489eb399a5d7
-
SSDEEP
12288:bkZMrKuT9eES2EGfKMlAvDuicrvXXKmtKDgGeIttwoPR5pWZhAIRXHYnrmF:bkZCXTqjMWvVcLXXxKlFttwYQRXHYrmF
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1