General
-
Target
b60122e3120b7d341d0d26d142b5af8c_JaffaCakes118
-
Size
96KB
-
Sample
240822-cydcystgmd
-
MD5
b60122e3120b7d341d0d26d142b5af8c
-
SHA1
04a79b39465680becc7b28296f4969b35cadfb3d
-
SHA256
145ac74cabb061518b3fa18ef680236a38f38a9742cb85e33ba6ad475e443bd9
-
SHA512
93b3c78c10d8302e25c6a953a65ba1bd852302b093717c1c38aee63a6371cb618be55fc35b65cc0513b87296afcf18bfb554f1455074c67263277d9e141abfcd
-
SSDEEP
1536:PW8Eg52v9tyVQO8P8ychwwjj3RJNEo/knRzdnynE7RldNEP8lijOezNIjnZHJ:PjE/velych9zR3Ek65RldqzCnhJ
Malware Config
Targets
-
-
Target
b60122e3120b7d341d0d26d142b5af8c_JaffaCakes118
-
Size
96KB
-
MD5
b60122e3120b7d341d0d26d142b5af8c
-
SHA1
04a79b39465680becc7b28296f4969b35cadfb3d
-
SHA256
145ac74cabb061518b3fa18ef680236a38f38a9742cb85e33ba6ad475e443bd9
-
SHA512
93b3c78c10d8302e25c6a953a65ba1bd852302b093717c1c38aee63a6371cb618be55fc35b65cc0513b87296afcf18bfb554f1455074c67263277d9e141abfcd
-
SSDEEP
1536:PW8Eg52v9tyVQO8P8ychwwjj3RJNEo/knRzdnynE7RldNEP8lijOezNIjnZHJ:PjE/velych9zR3Ek65RldqzCnhJ
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2