General
-
Target
8e022934a4695fc4da6fc23532b074ea_JaffaCakes118
-
Size
104KB
-
Sample
240812-kaawxsxcmh
-
MD5
8e022934a4695fc4da6fc23532b074ea
-
SHA1
193e4739b90bd8ed29dd1ac9f7e746c907e30ead
-
SHA256
ae3a6e6998789b504b5f2998add0d2a03747ca6ad0eff7c3810983dc7c3b43db
-
SHA512
a289d05ccd2e56e3389dd61579780ea67fd61c3ed49e906aa23c90694f6684989e48d5a9df71263b5090d20bb7e8abd66666a3ddbad84367392b0ca20169a34f
-
SSDEEP
1536:PV4nDvOnpgkiuIuSmB6x9uGB+2LGUh5crgqIbflrUHXzIgp2zy9JhTHhNIjnZn:O+wuPKOqIUrMzIgp2mJNhCnF
Malware Config
Targets
-
-
Target
8e022934a4695fc4da6fc23532b074ea_JaffaCakes118
-
Size
104KB
-
MD5
8e022934a4695fc4da6fc23532b074ea
-
SHA1
193e4739b90bd8ed29dd1ac9f7e746c907e30ead
-
SHA256
ae3a6e6998789b504b5f2998add0d2a03747ca6ad0eff7c3810983dc7c3b43db
-
SHA512
a289d05ccd2e56e3389dd61579780ea67fd61c3ed49e906aa23c90694f6684989e48d5a9df71263b5090d20bb7e8abd66666a3ddbad84367392b0ca20169a34f
-
SSDEEP
1536:PV4nDvOnpgkiuIuSmB6x9uGB+2LGUh5crgqIbflrUHXzIgp2zy9JhTHhNIjnZn:O+wuPKOqIUrMzIgp2mJNhCnF
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2