General
-
Target
951863ae073755e54cdd582caf2c9da7_JaffaCakes118
-
Size
728KB
-
Sample
240814-hyya1stfqq
-
MD5
951863ae073755e54cdd582caf2c9da7
-
SHA1
8c6137fa4de095dc8383415c790d050566fc4a88
-
SHA256
fd64b09a3a35e2f1f6e68dfee74629a21561086f711e0947b1ec81219dcad1fd
-
SHA512
ddd1d487d8d697c6ffb6645da3df6e20ecb467f036d1ab85eac07b7fb89b80f30991e0dd9d108d67010fcb1492ef7f95ed7d9d59af6ec82ecaae7e6ef4f479ee
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXZ/meGDgGeItoEc9GspWZhASRXHYnrmi:lEc8H5fMLN2Kb7ZrGlFtov9GsqRXHYrR
Malware Config
Targets
-
-
Target
951863ae073755e54cdd582caf2c9da7_JaffaCakes118
-
Size
728KB
-
MD5
951863ae073755e54cdd582caf2c9da7
-
SHA1
8c6137fa4de095dc8383415c790d050566fc4a88
-
SHA256
fd64b09a3a35e2f1f6e68dfee74629a21561086f711e0947b1ec81219dcad1fd
-
SHA512
ddd1d487d8d697c6ffb6645da3df6e20ecb467f036d1ab85eac07b7fb89b80f30991e0dd9d108d67010fcb1492ef7f95ed7d9d59af6ec82ecaae7e6ef4f479ee
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXZ/meGDgGeItoEc9GspWZhASRXHYnrmi:lEc8H5fMLN2Kb7ZrGlFtov9GsqRXHYrR
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1