General
-
Target
751a17e051ba9b6e8171ecfb65e5b2c8_JaffaCakes118
-
Size
96KB
-
Sample
240726-wghe5avbql
-
MD5
751a17e051ba9b6e8171ecfb65e5b2c8
-
SHA1
b17f4e862dfdfe92e224708169c2de803c8c3bb7
-
SHA256
de9fe23a7a6b6b7b8872c2b7152de1d0b62f09a64193f1723a8f4d4ddacb3982
-
SHA512
87056fb399b6e7a6b19cba54a0afcfbe4f2c78b4d94f0c42b4f1c0c4b3444fe34af3a3f7b9302992ba46cb2cdec1361d5dbf5b80f409d30a878808c053287f9d
-
SSDEEP
1536:+nQBHlf6cO/hq8kGulSc16l6u+NMMl/KlYv1Tq5ThFKNIj/:hmhqNlu8CFFKC/
Malware Config
Targets
-
-
Target
751a17e051ba9b6e8171ecfb65e5b2c8_JaffaCakes118
-
Size
96KB
-
MD5
751a17e051ba9b6e8171ecfb65e5b2c8
-
SHA1
b17f4e862dfdfe92e224708169c2de803c8c3bb7
-
SHA256
de9fe23a7a6b6b7b8872c2b7152de1d0b62f09a64193f1723a8f4d4ddacb3982
-
SHA512
87056fb399b6e7a6b19cba54a0afcfbe4f2c78b4d94f0c42b4f1c0c4b3444fe34af3a3f7b9302992ba46cb2cdec1361d5dbf5b80f409d30a878808c053287f9d
-
SSDEEP
1536:+nQBHlf6cO/hq8kGulSc16l6u+NMMl/KlYv1Tq5ThFKNIj/:hmhqNlu8CFFKC/
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2