General
-
Target
a4dd7df67145268bbf268bcd6a7433b8_JaffaCakes118
-
Size
116KB
-
Sample
240818-bxxvja1brq
-
MD5
a4dd7df67145268bbf268bcd6a7433b8
-
SHA1
14a9c6da5ea3593ce3b1e8425efa4ed0f5e031bf
-
SHA256
637446b46f7f069179e179306b5b3cb4d2a63e4d1305858009ba4939d9c00dc3
-
SHA512
53ef1cc491a106cb2afd581cc11e368e34d7c2a6169021bf0b45198a39348b255fd9c05efb8ef9aaca2b205eb74914a1130311ae16df296c30e2d9d088b08df3
-
SSDEEP
1536:hiB3huXVd3fs8koyFFx57Yj3oJoFD2lkt5ycQg:8JAltfMLEj3oJoAlyLX
Malware Config
Targets
-
-
Target
a4dd7df67145268bbf268bcd6a7433b8_JaffaCakes118
-
Size
116KB
-
MD5
a4dd7df67145268bbf268bcd6a7433b8
-
SHA1
14a9c6da5ea3593ce3b1e8425efa4ed0f5e031bf
-
SHA256
637446b46f7f069179e179306b5b3cb4d2a63e4d1305858009ba4939d9c00dc3
-
SHA512
53ef1cc491a106cb2afd581cc11e368e34d7c2a6169021bf0b45198a39348b255fd9c05efb8ef9aaca2b205eb74914a1130311ae16df296c30e2d9d088b08df3
-
SSDEEP
1536:hiB3huXVd3fs8koyFFx57Yj3oJoFD2lkt5ycQg:8JAltfMLEj3oJoAlyLX
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2