General
-
Target
a7829be3bca8d8a8d3c0f374246b8ff0_JaffaCakes118
-
Size
196KB
-
Sample
240818-vpjsgsvakg
-
MD5
a7829be3bca8d8a8d3c0f374246b8ff0
-
SHA1
0c23cc0f95edd208cc7df1667a89072c521941a4
-
SHA256
7ffe275306af1ff97467179dc148fc98d6b48badf68a1469dc6ec6512b24874c
-
SHA512
4d733e5f484eebce1c70250029d42768673ce76196e2b87f6a1099c5621c6bac2c470fbcb37d0e7e474082bdd0733bb655685fbbefc99077b6b0c9f5dbec87fd
-
SSDEEP
6144:+k4K16oTJWvfU4+bOl8femcK/fObT/bGimszUf7Wq9:BAoTMvs4+bOlNK/fObT/bGipE7P
Malware Config
Targets
-
-
Target
a7829be3bca8d8a8d3c0f374246b8ff0_JaffaCakes118
-
Size
196KB
-
MD5
a7829be3bca8d8a8d3c0f374246b8ff0
-
SHA1
0c23cc0f95edd208cc7df1667a89072c521941a4
-
SHA256
7ffe275306af1ff97467179dc148fc98d6b48badf68a1469dc6ec6512b24874c
-
SHA512
4d733e5f484eebce1c70250029d42768673ce76196e2b87f6a1099c5621c6bac2c470fbcb37d0e7e474082bdd0733bb655685fbbefc99077b6b0c9f5dbec87fd
-
SSDEEP
6144:+k4K16oTJWvfU4+bOl8femcK/fObT/bGimszUf7Wq9:BAoTMvs4+bOlNK/fObT/bGipE7P
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2