General
-
Target
81cd411640d9a3b79351fa968563076b_JaffaCakes118
-
Size
124KB
-
Sample
240801-1d8v5axanj
-
MD5
81cd411640d9a3b79351fa968563076b
-
SHA1
f8c86f4f78d111d566675e712ac5d260e90aa7bf
-
SHA256
487f8d77539869208471f223dfb44d4f383d50b721fb3a40a455eec18291fd28
-
SHA512
77089f9dafd23b02718670c36ea0ae0af62c9b1ea33416e611707a6b98444f5e7dd064c2db771cd5216b3d457448e15d2daad88cae60f4dfbbcb2495b6894f25
-
SSDEEP
1536:BZEShwRUuBxeDtMYHa27J14ltxporZ45igPNeG0hm:vEShwRUkeV6gJ1uCt45VIm
Malware Config
Targets
-
-
Target
81cd411640d9a3b79351fa968563076b_JaffaCakes118
-
Size
124KB
-
MD5
81cd411640d9a3b79351fa968563076b
-
SHA1
f8c86f4f78d111d566675e712ac5d260e90aa7bf
-
SHA256
487f8d77539869208471f223dfb44d4f383d50b721fb3a40a455eec18291fd28
-
SHA512
77089f9dafd23b02718670c36ea0ae0af62c9b1ea33416e611707a6b98444f5e7dd064c2db771cd5216b3d457448e15d2daad88cae60f4dfbbcb2495b6894f25
-
SSDEEP
1536:BZEShwRUuBxeDtMYHa27J14ltxporZ45igPNeG0hm:vEShwRUkeV6gJ1uCt45VIm
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2