General
-
Target
bab9434f5b14b547b60320276168d125_JaffaCakes118
-
Size
92KB
-
Sample
240823-hgnegssekm
-
MD5
bab9434f5b14b547b60320276168d125
-
SHA1
0cded07290bf1d47b44b3e1317517f9a80bc701e
-
SHA256
b84ca5650dd0b7122e2bfa8dc81e58bfa572ca452314e35fdd0340880eb79a28
-
SHA512
592fa1411d48f062b8b48c2caad9f9dbdacef39691ceb51263ccd337fe7b541e62f7042fa4b796ac28577cb9cd9b8f57f5db46c2a8383c3901ed95f91fb25967
-
SSDEEP
1536:7qZ1LG/pUjmuz1KshACl7cUu6/9cmkgp0mFvFRFjFVFXFySuNBhaSjwX2p62E:27G/WMCl7cUu6/92lBhTk2k
Malware Config
Targets
-
-
Target
bab9434f5b14b547b60320276168d125_JaffaCakes118
-
Size
92KB
-
MD5
bab9434f5b14b547b60320276168d125
-
SHA1
0cded07290bf1d47b44b3e1317517f9a80bc701e
-
SHA256
b84ca5650dd0b7122e2bfa8dc81e58bfa572ca452314e35fdd0340880eb79a28
-
SHA512
592fa1411d48f062b8b48c2caad9f9dbdacef39691ceb51263ccd337fe7b541e62f7042fa4b796ac28577cb9cd9b8f57f5db46c2a8383c3901ed95f91fb25967
-
SSDEEP
1536:7qZ1LG/pUjmuz1KshACl7cUu6/9cmkgp0mFvFRFjFVFXFySuNBhaSjwX2p62E:27G/WMCl7cUu6/92lBhTk2k
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2