General
-
Target
8a76a1bc1ac834a93c7d4444573eb5d7_JaffaCakes118
-
Size
120KB
-
Sample
240811-qbbgqs1akl
-
MD5
8a76a1bc1ac834a93c7d4444573eb5d7
-
SHA1
aff2e8669bed92615794ef892cff1144f17d0b6a
-
SHA256
e66bbd3859bd46405b12bf65dfaf71a1f3f7f62a648d1f63180f105b609dfe30
-
SHA512
e39b15766940b9cbbf057c598bcfb1a1b8172a5eb29dc3af1f895232cd02812e84ae29edd0951692513b893403bbd9743211e830a178bf0bd304867237ecca74
-
SSDEEP
1536:DoFCFefeS6VOhaXGE2Mtf9oUrUQKiQg9F5tkV7pjuX5e6wTeU/69fkt5ycQg:6CmetVkW2MtF3lV9qsfyLX
Malware Config
Targets
-
-
Target
8a76a1bc1ac834a93c7d4444573eb5d7_JaffaCakes118
-
Size
120KB
-
MD5
8a76a1bc1ac834a93c7d4444573eb5d7
-
SHA1
aff2e8669bed92615794ef892cff1144f17d0b6a
-
SHA256
e66bbd3859bd46405b12bf65dfaf71a1f3f7f62a648d1f63180f105b609dfe30
-
SHA512
e39b15766940b9cbbf057c598bcfb1a1b8172a5eb29dc3af1f895232cd02812e84ae29edd0951692513b893403bbd9743211e830a178bf0bd304867237ecca74
-
SSDEEP
1536:DoFCFefeS6VOhaXGE2Mtf9oUrUQKiQg9F5tkV7pjuX5e6wTeU/69fkt5ycQg:6CmetVkW2MtF3lV9qsfyLX
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2