General
-
Target
a3a2bc4edee4d73b42fdc714f8fba3b7_JaffaCakes118
-
Size
124KB
-
Sample
240817-w2yylssgkr
-
MD5
a3a2bc4edee4d73b42fdc714f8fba3b7
-
SHA1
f707546555738896c6ec7d731208d582d955abb7
-
SHA256
05946ad395cae7182b9d95df2d4c00c45dee0b33fd066112308f8e32292acd54
-
SHA512
7f274b3bb846b49929c917a834a685191015c0a702fcc98e4e97cbf2854514fcf91b70dbcf62e85897ac394a07eaa4301af91658b1f5e73b5664acdc857001ec
-
SSDEEP
1536:WftkjxTQiwU0GgAJa0P1kNmKldCMhdu8KWP/nTn8nBP9Ve+NeG0h/x:WkjuiwU0GgAT92p
Malware Config
Targets
-
-
Target
a3a2bc4edee4d73b42fdc714f8fba3b7_JaffaCakes118
-
Size
124KB
-
MD5
a3a2bc4edee4d73b42fdc714f8fba3b7
-
SHA1
f707546555738896c6ec7d731208d582d955abb7
-
SHA256
05946ad395cae7182b9d95df2d4c00c45dee0b33fd066112308f8e32292acd54
-
SHA512
7f274b3bb846b49929c917a834a685191015c0a702fcc98e4e97cbf2854514fcf91b70dbcf62e85897ac394a07eaa4301af91658b1f5e73b5664acdc857001ec
-
SSDEEP
1536:WftkjxTQiwU0GgAJa0P1kNmKldCMhdu8KWP/nTn8nBP9Ve+NeG0h/x:WkjuiwU0GgAT92p
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2