General
-
Target
bc3befb2f1d040d5cdf832bd1fdea92d_JaffaCakes118
-
Size
80KB
-
Sample
240823-sggbaatekj
-
MD5
bc3befb2f1d040d5cdf832bd1fdea92d
-
SHA1
ba206f845c2386cf931d7b83003847ecdf607fac
-
SHA256
02f3a65431c6223ceac8ad0a18cce41a976e572b1a1817eb8b39c7fe95a53be4
-
SHA512
119b12e0a6f792eece79ae2d1347ecf9ab822c99615e7cd47ce5e9fa6e062e192c7c1068860877cf6237ce192b3a538ad4d702087c9a81d60b9c7791801973ac
-
SSDEEP
768:ev6nMfqH++4qZHcAc8ebdtF5EmpW/p/hxRSH9NxIkL9v/Q6sWD:ev6Mq92ZKmpSFhxRSHdL9bsS
Malware Config
Targets
-
-
Target
bc3befb2f1d040d5cdf832bd1fdea92d_JaffaCakes118
-
Size
80KB
-
MD5
bc3befb2f1d040d5cdf832bd1fdea92d
-
SHA1
ba206f845c2386cf931d7b83003847ecdf607fac
-
SHA256
02f3a65431c6223ceac8ad0a18cce41a976e572b1a1817eb8b39c7fe95a53be4
-
SHA512
119b12e0a6f792eece79ae2d1347ecf9ab822c99615e7cd47ce5e9fa6e062e192c7c1068860877cf6237ce192b3a538ad4d702087c9a81d60b9c7791801973ac
-
SSDEEP
768:ev6nMfqH++4qZHcAc8ebdtF5EmpW/p/hxRSH9NxIkL9v/Q6sWD:ev6Mq92ZKmpSFhxRSHdL9bsS
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2