General
-
Target
7782a1f530049155ec8c07b3f644aae4_JaffaCakes118
-
Size
240KB
-
Sample
240727-j8lkmszajc
-
MD5
7782a1f530049155ec8c07b3f644aae4
-
SHA1
c5e36b6577fd41b83efb2a6e5cb6e940110219f9
-
SHA256
b5579e7bce06e34bc82a6da370471097aac6b3f4cdcf38a131b2dba7ca4193f5
-
SHA512
a2ba36fc0c2f700700997bd6a84afbbf9fe33a634e8554ce979d9a3a2af578cb4a9d9c80cb76fb0f21046554bd3e04d4fdee50ae4f4829e3e719cfd17e07e7bc
-
SSDEEP
1536:GLZVXr2Or2CR1RpvR1RURmJSiEUE8M7uA4w6RARZR5RARPRmRm2e7ve7ze7ve7ZY:072G2KrZR3
Malware Config
Targets
-
-
Target
7782a1f530049155ec8c07b3f644aae4_JaffaCakes118
-
Size
240KB
-
MD5
7782a1f530049155ec8c07b3f644aae4
-
SHA1
c5e36b6577fd41b83efb2a6e5cb6e940110219f9
-
SHA256
b5579e7bce06e34bc82a6da370471097aac6b3f4cdcf38a131b2dba7ca4193f5
-
SHA512
a2ba36fc0c2f700700997bd6a84afbbf9fe33a634e8554ce979d9a3a2af578cb4a9d9c80cb76fb0f21046554bd3e04d4fdee50ae4f4829e3e719cfd17e07e7bc
-
SSDEEP
1536:GLZVXr2Or2CR1RpvR1RURmJSiEUE8M7uA4w6RARZR5RARPRmRm2e7ve7ze7ve7ZY:072G2KrZR3
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2