General
-
Target
96c3faaa6c740abb085a17df464b0941_JaffaCakes118
-
Size
124KB
-
Sample
240814-tsa43s1eph
-
MD5
96c3faaa6c740abb085a17df464b0941
-
SHA1
096e4942b732db2f6a4bd01ad5ff287ff1cab5b1
-
SHA256
6f61ada13da9d285e4f9233e0c6644c1020ca27815770a9eee53cf719fd3454f
-
SHA512
1151bcd8c681201b4e8918fe777de1d5b62c6a9a0f082750d950884ce0f68aa2aa4a93a11bc06574f6267a2fb76e626a28656df201f3c3997d54275a52267464
-
SSDEEP
1536:w9b1mEFT/67NxkiQixA+alh98r8Y9USv1jyPwo7JaS1:cb1mEFT/67gjH8ri8iwQL
Malware Config
Targets
-
-
Target
96c3faaa6c740abb085a17df464b0941_JaffaCakes118
-
Size
124KB
-
MD5
96c3faaa6c740abb085a17df464b0941
-
SHA1
096e4942b732db2f6a4bd01ad5ff287ff1cab5b1
-
SHA256
6f61ada13da9d285e4f9233e0c6644c1020ca27815770a9eee53cf719fd3454f
-
SHA512
1151bcd8c681201b4e8918fe777de1d5b62c6a9a0f082750d950884ce0f68aa2aa4a93a11bc06574f6267a2fb76e626a28656df201f3c3997d54275a52267464
-
SSDEEP
1536:w9b1mEFT/67NxkiQixA+alh98r8Y9USv1jyPwo7JaS1:cb1mEFT/67gjH8ri8iwQL
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2