General
-
Target
749ec893ece84368783ca450786f96fa_JaffaCakes118
-
Size
728KB
-
Sample
240726-st556swcrr
-
MD5
749ec893ece84368783ca450786f96fa
-
SHA1
f0c262a431852dcb8f6ecbe032657cc330c211ca
-
SHA256
b2fa921125ba1b70a89ad0e590195f385db49602852ea0570061d88a9ff24b63
-
SHA512
3bff08156643d3a6b1f142655cae38d232fa177c357fecfb9c9c58647e0aec614b4546b0554edc17194dec0e9b13c9c2a241417d3fa0fa2d8ee4d49c6c806d3b
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXa/meGDgGeItoEc9GspWZhASRXHYnrm0:lEc8H5fMLN2Kb7arGlFtov9GsqRXHYr/
Malware Config
Targets
-
-
Target
749ec893ece84368783ca450786f96fa_JaffaCakes118
-
Size
728KB
-
MD5
749ec893ece84368783ca450786f96fa
-
SHA1
f0c262a431852dcb8f6ecbe032657cc330c211ca
-
SHA256
b2fa921125ba1b70a89ad0e590195f385db49602852ea0570061d88a9ff24b63
-
SHA512
3bff08156643d3a6b1f142655cae38d232fa177c357fecfb9c9c58647e0aec614b4546b0554edc17194dec0e9b13c9c2a241417d3fa0fa2d8ee4d49c6c806d3b
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXa/meGDgGeItoEc9GspWZhASRXHYnrm0:lEc8H5fMLN2Kb7arGlFtov9GsqRXHYr/
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1