General
-
Target
941cbff237391376d72d0340a1a4df39_JaffaCakes118
-
Size
124KB
-
Sample
240813-wedn6asdqp
-
MD5
941cbff237391376d72d0340a1a4df39
-
SHA1
f4c2b81018f6e7b2a3686b8d76acd1a2ffd7ef5a
-
SHA256
dc0091e4245ebb9bb7f751b1103a9b10d57549e93582a2bdcf1b7b080f44af34
-
SHA512
bf914a98f89cb85412e78d612e90ea3327cd15049ee8c8e0c88ffc26c1f7b36e92a68af8de5a1561bf8ad674f47f78490aaec072aacb62b6a61d0a05d6010561
-
SSDEEP
1536:hoExhwR7luBxeDtMYHa27J14ltxporZ45i8NeG0h/l:KExhwR7lkeV6gJ1uCt45yt
Malware Config
Targets
-
-
Target
941cbff237391376d72d0340a1a4df39_JaffaCakes118
-
Size
124KB
-
MD5
941cbff237391376d72d0340a1a4df39
-
SHA1
f4c2b81018f6e7b2a3686b8d76acd1a2ffd7ef5a
-
SHA256
dc0091e4245ebb9bb7f751b1103a9b10d57549e93582a2bdcf1b7b080f44af34
-
SHA512
bf914a98f89cb85412e78d612e90ea3327cd15049ee8c8e0c88ffc26c1f7b36e92a68af8de5a1561bf8ad674f47f78490aaec072aacb62b6a61d0a05d6010561
-
SSDEEP
1536:hoExhwR7luBxeDtMYHa27J14ltxporZ45i8NeG0h/l:KExhwR7lkeV6gJ1uCt45yt
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2