General
-
Target
a010198ca7125875ee98f3944ff0f1c7_JaffaCakes118
-
Size
116KB
-
Sample
240816-1nnypssfjm
-
MD5
a010198ca7125875ee98f3944ff0f1c7
-
SHA1
47c987a7aa87eaf884df316ede32d5a32ca70f88
-
SHA256
22d43caef05ef2b08aa6642a19a6ee00c5b097d4005187cf2d8082ce890696d0
-
SHA512
e8539f77064048e4dc48d329e938d930a72cd8d68480fc054aa0a5f79a3e4f305760df0043262e1caaf5c0a119ae523fdfd865ca34bca965ef7db3c99f9332ef
-
SSDEEP
1536:Jcpxo+++r4P8Kw6KBOIW4Z8HO1Zwt0f4HeDUEdMOPy9sbgN2wo7JaS1:+p2+r4PfIr1ZNDUEdTwQL
Malware Config
Targets
-
-
Target
a010198ca7125875ee98f3944ff0f1c7_JaffaCakes118
-
Size
116KB
-
MD5
a010198ca7125875ee98f3944ff0f1c7
-
SHA1
47c987a7aa87eaf884df316ede32d5a32ca70f88
-
SHA256
22d43caef05ef2b08aa6642a19a6ee00c5b097d4005187cf2d8082ce890696d0
-
SHA512
e8539f77064048e4dc48d329e938d930a72cd8d68480fc054aa0a5f79a3e4f305760df0043262e1caaf5c0a119ae523fdfd865ca34bca965ef7db3c99f9332ef
-
SSDEEP
1536:Jcpxo+++r4P8Kw6KBOIW4Z8HO1Zwt0f4HeDUEdMOPy9sbgN2wo7JaS1:+p2+r4PfIr1ZNDUEdTwQL
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2