General

  • Target

    8dad249ac625e5c1292f641c954fa885_JaffaCakes118

  • Size

    198KB

  • Sample

    240812-hanfxatdma

  • MD5

    8dad249ac625e5c1292f641c954fa885

  • SHA1

    38162ef4fcad64a47fd742e00c4ced3c2cec64ee

  • SHA256

    90e936fc6bb05660a4c9e80c2f7fe952b366f39629a7e6340a3f08d2da89d6a8

  • SHA512

    485b266a010700f92f9ad4ea92fce481236b95e1b7e0f99bfd88877bc71c88ddae32070a34d188c7661308baab46cf8dd99ff266d719ef195123dfdc0616a3d9

  • SSDEEP

    3072:B8bG7d9quXIEfECfOvu1klM/av/sTvout9u1ki:B8KTquIGJ7an0oSM7

Score
7/10

Malware Config

Targets

    • Target

      8dad249ac625e5c1292f641c954fa885_JaffaCakes118

    • Size

      198KB

    • MD5

      8dad249ac625e5c1292f641c954fa885

    • SHA1

      38162ef4fcad64a47fd742e00c4ced3c2cec64ee

    • SHA256

      90e936fc6bb05660a4c9e80c2f7fe952b366f39629a7e6340a3f08d2da89d6a8

    • SHA512

      485b266a010700f92f9ad4ea92fce481236b95e1b7e0f99bfd88877bc71c88ddae32070a34d188c7661308baab46cf8dd99ff266d719ef195123dfdc0616a3d9

    • SSDEEP

      3072:B8bG7d9quXIEfECfOvu1klM/av/sTvout9u1ki:B8KTquIGJ7an0oSM7

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks