General
-
Target
ad7957ed9393e8548de6f18b2a665103_JaffaCakes118
-
Size
38KB
-
Sample
240820-cf3j5asbrl
-
MD5
ad7957ed9393e8548de6f18b2a665103
-
SHA1
61236345a9758b9f751ac00d7b99ddd7c8d3e34e
-
SHA256
1212e177454b1ffa0e50e35281f6061133b6707faada829852a408020fbba615
-
SHA512
f54a8881e04e0c84c4b40ca28441b4bff3610716557fc74ae85365f06989ec97abb01a70a593f53ad1c7bbf9ba72c6ecc92344b6932f7b7a7d367e1ff59265fb
-
SSDEEP
768:ecNnfawyp9q44b54VaSpalGg/o+pBBr8tyJ7OoW3KcW19:eA7ypI4qOCzJfJU3u9
Malware Config
Targets
-
-
Target
ad7957ed9393e8548de6f18b2a665103_JaffaCakes118
-
Size
38KB
-
MD5
ad7957ed9393e8548de6f18b2a665103
-
SHA1
61236345a9758b9f751ac00d7b99ddd7c8d3e34e
-
SHA256
1212e177454b1ffa0e50e35281f6061133b6707faada829852a408020fbba615
-
SHA512
f54a8881e04e0c84c4b40ca28441b4bff3610716557fc74ae85365f06989ec97abb01a70a593f53ad1c7bbf9ba72c6ecc92344b6932f7b7a7d367e1ff59265fb
-
SSDEEP
768:ecNnfawyp9q44b54VaSpalGg/o+pBBr8tyJ7OoW3KcW19:eA7ypI4qOCzJfJU3u9
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Browser Extensions
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1