General
-
Target
945ad14055450095298e4fc426a54695_JaffaCakes118
-
Size
124KB
-
Sample
240813-xr2r7a1dlh
-
MD5
945ad14055450095298e4fc426a54695
-
SHA1
6b3c41a11d8b44223f0273d7a3123d8757a668e1
-
SHA256
132efae4611ec622718754e485416f7b1fd8f5d2828e9edbd876754a8236a20d
-
SHA512
aa64449ea8f627c4bdf5c7623cbdee3fe1f34c9ad472e31164b51183b39edf8aaad92cf971d1fd69c744278209ad7f51ad0f1beb073e6c6ef8ba22533e731224
-
SSDEEP
1536:LyEZhwRQuBxeDtMYHa27J14ltxporZ45ioNeG0h9:mEZhwRQkeV6gJ1uCt45y9
Malware Config
Targets
-
-
Target
945ad14055450095298e4fc426a54695_JaffaCakes118
-
Size
124KB
-
MD5
945ad14055450095298e4fc426a54695
-
SHA1
6b3c41a11d8b44223f0273d7a3123d8757a668e1
-
SHA256
132efae4611ec622718754e485416f7b1fd8f5d2828e9edbd876754a8236a20d
-
SHA512
aa64449ea8f627c4bdf5c7623cbdee3fe1f34c9ad472e31164b51183b39edf8aaad92cf971d1fd69c744278209ad7f51ad0f1beb073e6c6ef8ba22533e731224
-
SSDEEP
1536:LyEZhwRQuBxeDtMYHa27J14ltxporZ45ioNeG0h9:mEZhwRQkeV6gJ1uCt45y9
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2