General
-
Target
84f95c22135cb1cfa26c5bed1226284e_JaffaCakes118
-
Size
92KB
-
Sample
240810-gcjeassanh
-
MD5
84f95c22135cb1cfa26c5bed1226284e
-
SHA1
000060d952349cae1a34eec83be7067c79c7a8c0
-
SHA256
d417351ecd6b8ace08b9e2f3a78f0189a07f9b40472c47380cc650513917f39f
-
SHA512
c1e2ff0358929132aa8b98fe5b58800215fb42c59cdf0d4816a479e14e64a30d5fe174917faa5fd1f3db7663615126e569d5a2bb367633de4f5d40ae0c7959c7
-
SSDEEP
1536:fVj7agC8UeIXcBnSxrwNCs1qPerIfynVDiC1M1p1w1s1h1R15UVnV4kTbcN:N5C8UepnSxrwNCs1qPb5Ur4Qm
Malware Config
Targets
-
-
Target
84f95c22135cb1cfa26c5bed1226284e_JaffaCakes118
-
Size
92KB
-
MD5
84f95c22135cb1cfa26c5bed1226284e
-
SHA1
000060d952349cae1a34eec83be7067c79c7a8c0
-
SHA256
d417351ecd6b8ace08b9e2f3a78f0189a07f9b40472c47380cc650513917f39f
-
SHA512
c1e2ff0358929132aa8b98fe5b58800215fb42c59cdf0d4816a479e14e64a30d5fe174917faa5fd1f3db7663615126e569d5a2bb367633de4f5d40ae0c7959c7
-
SSDEEP
1536:fVj7agC8UeIXcBnSxrwNCs1qPerIfynVDiC1M1p1w1s1h1R15UVnV4kTbcN:N5C8UepnSxrwNCs1qPb5Ur4Qm
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2