General
-
Target
8b59028ff4f6d71e765b3a711d58151b_JaffaCakes118
-
Size
733KB
-
Sample
240811-wbgawazemr
-
MD5
8b59028ff4f6d71e765b3a711d58151b
-
SHA1
6bdc1aa94c506d1fb418a2f733fdd00f982e4a1d
-
SHA256
4d36d30627662dde8e05245adff774ce2a75caf5b4a54a39c455df56757520bd
-
SHA512
5552af042422dbf2943a743eb42d7049f1f3e3858b25f8516869dd8015f1d5970cdb81a6ff1f6111fb0efb50acbdd3c1f27b7170a901df029389a566a83c0709
-
SSDEEP
12288:13Fpj4rBRLukn+zKg2oOR2OQl5XAdmxQDgGeItGBV07XpWZhASRXHYnrmM:1VpUFRUgoOwOY5XAqQlFtWVAqRXHYrmM
Malware Config
Targets
-
-
Target
8b59028ff4f6d71e765b3a711d58151b_JaffaCakes118
-
Size
733KB
-
MD5
8b59028ff4f6d71e765b3a711d58151b
-
SHA1
6bdc1aa94c506d1fb418a2f733fdd00f982e4a1d
-
SHA256
4d36d30627662dde8e05245adff774ce2a75caf5b4a54a39c455df56757520bd
-
SHA512
5552af042422dbf2943a743eb42d7049f1f3e3858b25f8516869dd8015f1d5970cdb81a6ff1f6111fb0efb50acbdd3c1f27b7170a901df029389a566a83c0709
-
SSDEEP
12288:13Fpj4rBRLukn+zKg2oOR2OQl5XAdmxQDgGeItGBV07XpWZhASRXHYnrmM:1VpUFRUgoOwOY5XAqQlFtWVAqRXHYrmM
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1