General
-
Target
baeecd8dbb85e8404551174d331d9d5c_JaffaCakes118
-
Size
312KB
-
Sample
240823-jxmzbsvgnj
-
MD5
baeecd8dbb85e8404551174d331d9d5c
-
SHA1
d8c27362371a5e4cd5b37761b79ecbac42704e19
-
SHA256
1169d496a7c757a2d55dc9246a0cc98ab82b28c41a5c390d994491892e3b128e
-
SHA512
c4710fe85d866f73734f9640be76c7901cf9c1b0d030d0ea3de52387d55b7ed59ba39b35df103dd9df1cca68258394f3815e7201ce4e3a065df874d36c1962d6
-
SSDEEP
6144:1KxLfWxJYw4xusHwsY0sQeDWuPxnyXX7:oLfWxJIAsQsY0qR
Malware Config
Targets
-
-
Target
baeecd8dbb85e8404551174d331d9d5c_JaffaCakes118
-
Size
312KB
-
MD5
baeecd8dbb85e8404551174d331d9d5c
-
SHA1
d8c27362371a5e4cd5b37761b79ecbac42704e19
-
SHA256
1169d496a7c757a2d55dc9246a0cc98ab82b28c41a5c390d994491892e3b128e
-
SHA512
c4710fe85d866f73734f9640be76c7901cf9c1b0d030d0ea3de52387d55b7ed59ba39b35df103dd9df1cca68258394f3815e7201ce4e3a065df874d36c1962d6
-
SSDEEP
6144:1KxLfWxJYw4xusHwsY0sQeDWuPxnyXX7:oLfWxJIAsQsY0qR
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2