General
-
Target
a33dba9cc742f1176c31a2b82534d5ad_JaffaCakes118
-
Size
240KB
-
Sample
240817-trc72svckh
-
MD5
a33dba9cc742f1176c31a2b82534d5ad
-
SHA1
a7bfaf8ad5a634260a040934872decc3fb1c3df4
-
SHA256
047840e73059c5fd28b9d830723e999c1a2a0bfa06ee279879c556999a201ea2
-
SHA512
a580470cf4c9fe20fdcbc359686f570b9e815ff51764c53ba47a1c3dc45f8b91694af72890946fd3ccd8828da3b9515cc3bcc7c279f45fb1e0805d94cb7b5c8a
-
SSDEEP
1536:G3afr2Or2CR1RpvR1RURmJSiEUE8M7uA4w6RARZR5RARPRmRm2e7ve7ze7ve7ZeP:tT2G2KrZRp
Malware Config
Targets
-
-
Target
a33dba9cc742f1176c31a2b82534d5ad_JaffaCakes118
-
Size
240KB
-
MD5
a33dba9cc742f1176c31a2b82534d5ad
-
SHA1
a7bfaf8ad5a634260a040934872decc3fb1c3df4
-
SHA256
047840e73059c5fd28b9d830723e999c1a2a0bfa06ee279879c556999a201ea2
-
SHA512
a580470cf4c9fe20fdcbc359686f570b9e815ff51764c53ba47a1c3dc45f8b91694af72890946fd3ccd8828da3b9515cc3bcc7c279f45fb1e0805d94cb7b5c8a
-
SSDEEP
1536:G3afr2Or2CR1RpvR1RURmJSiEUE8M7uA4w6RARZR5RARPRmRm2e7ve7ze7ve7ZeP:tT2G2KrZRp
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2