General
-
Target
b948fe12234b66b0d793e9d25da070bd_JaffaCakes118
-
Size
88KB
-
Sample
240822-1s6djszdrh
-
MD5
b948fe12234b66b0d793e9d25da070bd
-
SHA1
298f1f9a4c00b24e0839a8c25c889772307acb2b
-
SHA256
b28e6c04471b5d36c59ea681a0955447a372b8b66aaa82fd81e6c12d790e5464
-
SHA512
ea147b5db6feb39b7191a0be0d25660c19ec584ca86e6cfe22677ddc5b61bed5c583e8b42ea6802f5d1703f160b4ef94143bfe81a2e35a5bda5ded10ce1d8bfd
-
SSDEEP
768:nDFIrMNddaqnObOasGEwU8Z1Rbe2kjEQJQ1H7a8zFkzqcwug43F:xIQ8iCU8Z1QjEQJecwuTV
Malware Config
Targets
-
-
Target
b948fe12234b66b0d793e9d25da070bd_JaffaCakes118
-
Size
88KB
-
MD5
b948fe12234b66b0d793e9d25da070bd
-
SHA1
298f1f9a4c00b24e0839a8c25c889772307acb2b
-
SHA256
b28e6c04471b5d36c59ea681a0955447a372b8b66aaa82fd81e6c12d790e5464
-
SHA512
ea147b5db6feb39b7191a0be0d25660c19ec584ca86e6cfe22677ddc5b61bed5c583e8b42ea6802f5d1703f160b4ef94143bfe81a2e35a5bda5ded10ce1d8bfd
-
SSDEEP
768:nDFIrMNddaqnObOasGEwU8Z1Rbe2kjEQJQ1H7a8zFkzqcwug43F:xIQ8iCU8Z1QjEQJecwuTV
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2