General
-
Target
a32285cc41000bbef05c57ca1eaea99a_JaffaCakes118
-
Size
284KB
-
Sample
240817-s5r3pawekm
-
MD5
a32285cc41000bbef05c57ca1eaea99a
-
SHA1
9acf105dd1b2da17bc2d824ead5d0ff03a2e4b98
-
SHA256
e4c1bf6ac46e411fb656e00b79459ed594e4445a0e82b638c79a57e410779408
-
SHA512
c1fde9a7b6a305a33e49f0b5bdc5caa364ef99142bc6be5970bbdf8219052ab232e30c2fb2b1fe4c8ea889f255660f2fbbfbbbceb881bac1c27872f8e0d07e75
-
SSDEEP
6144:LC6QcxQRhNyKQ9ezwA2Rv4gnw+lJVomcEk9dk/FLGY+Kt/dPLsx02Gf6vIqGnuTr:bjVIrbQdnHcllaXYDoDM3flUan
Malware Config
Targets
-
-
Target
a32285cc41000bbef05c57ca1eaea99a_JaffaCakes118
-
Size
284KB
-
MD5
a32285cc41000bbef05c57ca1eaea99a
-
SHA1
9acf105dd1b2da17bc2d824ead5d0ff03a2e4b98
-
SHA256
e4c1bf6ac46e411fb656e00b79459ed594e4445a0e82b638c79a57e410779408
-
SHA512
c1fde9a7b6a305a33e49f0b5bdc5caa364ef99142bc6be5970bbdf8219052ab232e30c2fb2b1fe4c8ea889f255660f2fbbfbbbceb881bac1c27872f8e0d07e75
-
SSDEEP
6144:LC6QcxQRhNyKQ9ezwA2Rv4gnw+lJVomcEk9dk/FLGY+Kt/dPLsx02Gf6vIqGnuTr:bjVIrbQdnHcllaXYDoDM3flUan
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2