General
-
Target
95f8eacf76c83041c617b29b81ad46d0_JaffaCakes118
-
Size
728KB
-
Sample
240814-nw1k9azgmg
-
MD5
95f8eacf76c83041c617b29b81ad46d0
-
SHA1
6b2df1cb5c640e0690d878770d458262c64e7224
-
SHA256
721ec103b215be726df43d563f5a42d7d99ce9c195085a42ca11a0e837d28c2b
-
SHA512
33d7efd6c549261f3949d9ab2e2ad61b9e497a7852eb3b2e80560c88335fd292a94ad497f2343dff4925b6f6409dcf6491d6968bb4f555ad99aabe94b3422097
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXy/meGDgGeItoEc9GspWZhASRXHYnrmf:lEc8H5fMLN2Kb7yrGlFtov9GsqRXHYrc
Malware Config
Targets
-
-
Target
95f8eacf76c83041c617b29b81ad46d0_JaffaCakes118
-
Size
728KB
-
MD5
95f8eacf76c83041c617b29b81ad46d0
-
SHA1
6b2df1cb5c640e0690d878770d458262c64e7224
-
SHA256
721ec103b215be726df43d563f5a42d7d99ce9c195085a42ca11a0e837d28c2b
-
SHA512
33d7efd6c549261f3949d9ab2e2ad61b9e497a7852eb3b2e80560c88335fd292a94ad497f2343dff4925b6f6409dcf6491d6968bb4f555ad99aabe94b3422097
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXy/meGDgGeItoEc9GspWZhASRXHYnrmf:lEc8H5fMLN2Kb7yrGlFtov9GsqRXHYrc
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1