General

  • Target

    bc3befb2f1d040d5cdf832bd1fdea92d_JaffaCakes118

  • Size

    80KB

  • Sample

    240823-sggbaatekj

  • MD5

    bc3befb2f1d040d5cdf832bd1fdea92d

  • SHA1

    ba206f845c2386cf931d7b83003847ecdf607fac

  • SHA256

    02f3a65431c6223ceac8ad0a18cce41a976e572b1a1817eb8b39c7fe95a53be4

  • SHA512

    119b12e0a6f792eece79ae2d1347ecf9ab822c99615e7cd47ce5e9fa6e062e192c7c1068860877cf6237ce192b3a538ad4d702087c9a81d60b9c7791801973ac

  • SSDEEP

    768:ev6nMfqH++4qZHcAc8ebdtF5EmpW/p/hxRSH9NxIkL9v/Q6sWD:ev6Mq92ZKmpSFhxRSHdL9bsS

Malware Config

Targets

    • Target

      bc3befb2f1d040d5cdf832bd1fdea92d_JaffaCakes118

    • Size

      80KB

    • MD5

      bc3befb2f1d040d5cdf832bd1fdea92d

    • SHA1

      ba206f845c2386cf931d7b83003847ecdf607fac

    • SHA256

      02f3a65431c6223ceac8ad0a18cce41a976e572b1a1817eb8b39c7fe95a53be4

    • SHA512

      119b12e0a6f792eece79ae2d1347ecf9ab822c99615e7cd47ce5e9fa6e062e192c7c1068860877cf6237ce192b3a538ad4d702087c9a81d60b9c7791801973ac

    • SSDEEP

      768:ev6nMfqH++4qZHcAc8ebdtF5EmpW/p/hxRSH9NxIkL9v/Q6sWD:ev6Mq92ZKmpSFhxRSHdL9bsS

    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks