General
-
Target
a60ddaa4fe1c19cd86b4a3efaffbf912_JaffaCakes118
-
Size
124KB
-
Sample
240818-j874msxekq
-
MD5
a60ddaa4fe1c19cd86b4a3efaffbf912
-
SHA1
2830ff9a3065a55899a8061d1298c2fd4c8bdd51
-
SHA256
2e58d2e5698ad23e8925c207a9d4a6c21aeeb6714123088363928a0275a3c831
-
SHA512
ec6f9f45935d5a46596caeb6cd03cee2e7716741ca9826a392244081c3c27a7238346b2042f60e0b27a51169357c9928473eb25355e5a8cb0f98aadece4c30f1
-
SSDEEP
1536:LktkjsTQ3U0GgAJa0P1kNmKldCMhdu8KWP/nTn8nBP9VeSFPNeG0h/y:Wkj73U0GgAT9nIq
Malware Config
Targets
-
-
Target
a60ddaa4fe1c19cd86b4a3efaffbf912_JaffaCakes118
-
Size
124KB
-
MD5
a60ddaa4fe1c19cd86b4a3efaffbf912
-
SHA1
2830ff9a3065a55899a8061d1298c2fd4c8bdd51
-
SHA256
2e58d2e5698ad23e8925c207a9d4a6c21aeeb6714123088363928a0275a3c831
-
SHA512
ec6f9f45935d5a46596caeb6cd03cee2e7716741ca9826a392244081c3c27a7238346b2042f60e0b27a51169357c9928473eb25355e5a8cb0f98aadece4c30f1
-
SSDEEP
1536:LktkjsTQ3U0GgAJa0P1kNmKldCMhdu8KWP/nTn8nBP9VeSFPNeG0h/y:Wkj73U0GgAT9nIq
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2