General
-
Target
83d2931dc6d5c1bce84fb2cfb10928a2_JaffaCakes118
-
Size
96KB
-
Sample
240809-2h2haaxakc
-
MD5
83d2931dc6d5c1bce84fb2cfb10928a2
-
SHA1
3eb967fa7c7914672c2ae906dfcffef41e7ff52d
-
SHA256
52494a892ddc35bbe79ce685f4ef89bfe02c61c1ea85b0641997bd6236158e28
-
SHA512
d3122084b0cde95ffaadbfb22fed05a1e5e684058cb38ec54d584ee8c3e98ad643fb5c026b1911fd6f8cd5a2a84ac77f5aa982dd6b8a791b1fbe5584544c774c
-
SSDEEP
1536:PWQBHNf6cO/hIiikGulSc16l6u+NMMl/KlYv1Tq5ThFRNIjN:ZOhI4lu8CFFRCN
Malware Config
Targets
-
-
Target
83d2931dc6d5c1bce84fb2cfb10928a2_JaffaCakes118
-
Size
96KB
-
MD5
83d2931dc6d5c1bce84fb2cfb10928a2
-
SHA1
3eb967fa7c7914672c2ae906dfcffef41e7ff52d
-
SHA256
52494a892ddc35bbe79ce685f4ef89bfe02c61c1ea85b0641997bd6236158e28
-
SHA512
d3122084b0cde95ffaadbfb22fed05a1e5e684058cb38ec54d584ee8c3e98ad643fb5c026b1911fd6f8cd5a2a84ac77f5aa982dd6b8a791b1fbe5584544c774c
-
SSDEEP
1536:PWQBHNf6cO/hIiikGulSc16l6u+NMMl/KlYv1Tq5ThFRNIjN:ZOhI4lu8CFFRCN
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2