General
-
Target
87b4f61c3f00d693718237e34bd3ca65_JaffaCakes118
-
Size
100KB
-
Sample
240810-z5fg8asfqf
-
MD5
87b4f61c3f00d693718237e34bd3ca65
-
SHA1
f3225d398a4981bc41b66d31f6b1495decf06fd1
-
SHA256
cb02a303770e929cce50641000b513b6e7832ecf9132c1eb720e1a094233c1bf
-
SHA512
1b586fd8a4dd125bd0f46424efd0fa45cd3f53936ee6f351aa28a6cb3d257387f8ba5a7caf1634f3c8a4c9a8b89972ed354ba0fa12cc86c562410afe6a8329fb
-
SSDEEP
1536:NZtGh82NTzwUIMGAc4ohrPXo+73Rez8b0Sy/NIj/:qwUXurPX7C/C/
Malware Config
Targets
-
-
Target
87b4f61c3f00d693718237e34bd3ca65_JaffaCakes118
-
Size
100KB
-
MD5
87b4f61c3f00d693718237e34bd3ca65
-
SHA1
f3225d398a4981bc41b66d31f6b1495decf06fd1
-
SHA256
cb02a303770e929cce50641000b513b6e7832ecf9132c1eb720e1a094233c1bf
-
SHA512
1b586fd8a4dd125bd0f46424efd0fa45cd3f53936ee6f351aa28a6cb3d257387f8ba5a7caf1634f3c8a4c9a8b89972ed354ba0fa12cc86c562410afe6a8329fb
-
SSDEEP
1536:NZtGh82NTzwUIMGAc4ohrPXo+73Rez8b0Sy/NIj/:qwUXurPX7C/C/
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2