General
-
Target
82141a2ed8aceb05572e8877ad7da77c_JaffaCakes118
-
Size
734KB
-
Sample
240801-218z3s1epl
-
MD5
82141a2ed8aceb05572e8877ad7da77c
-
SHA1
2ad19a3175228f12624f5dd98a9f94fc7b078c14
-
SHA256
a90e01f699fd5ff830a82dc7b28668be77b87047550743a3f6c7c17e5555ba2b
-
SHA512
4abe57db2ee43ff5f36977634172377c8835c9ba938dd27ac97a2a5affc1c564dfefb80a480738d4d52232ffd14a7e2923454b3acb76fca392c1255b2b0b7f52
-
SSDEEP
12288:bkZMrKuT9eES2EGfKMlAvDuicrvXZKmtKDgGeIttwoPR5pWZhAIRXHYnrmZ:bkZCXTqjMWvVcLXZxKlFttwYQRXHYrmZ
Malware Config
Targets
-
-
Target
82141a2ed8aceb05572e8877ad7da77c_JaffaCakes118
-
Size
734KB
-
MD5
82141a2ed8aceb05572e8877ad7da77c
-
SHA1
2ad19a3175228f12624f5dd98a9f94fc7b078c14
-
SHA256
a90e01f699fd5ff830a82dc7b28668be77b87047550743a3f6c7c17e5555ba2b
-
SHA512
4abe57db2ee43ff5f36977634172377c8835c9ba938dd27ac97a2a5affc1c564dfefb80a480738d4d52232ffd14a7e2923454b3acb76fca392c1255b2b0b7f52
-
SSDEEP
12288:bkZMrKuT9eES2EGfKMlAvDuicrvXZKmtKDgGeIttwoPR5pWZhAIRXHYnrmZ:bkZCXTqjMWvVcLXZxKlFttwYQRXHYrmZ
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1