General
-
Target
bcde94ed4e934d908c4a493dfc156479_JaffaCakes118
-
Size
100KB
-
Sample
240823-x32xbssapd
-
MD5
bcde94ed4e934d908c4a493dfc156479
-
SHA1
6ca1d92439c34c4d2379b580a62bb42aba1aad4c
-
SHA256
bfdf9f9ad699fe7fbc729805c2599c248a9a4dadd88456685426bfd78b824bf8
-
SHA512
ea0b27b73ca0b6d8fc834e1be430210965835381c29d599f54a23f6c257dc8b251897ab0fed11074857ca6034914cae9ef4330a5aa32a4f6bfebab968166e5e3
-
SSDEEP
1536:Fts8iAuismywsbUgLw0wF9MGM9K/oKtNgCMbA1bL3N+NM5UfpNIjnZzb:gQg/KLOM5iCnBb
Malware Config
Targets
-
-
Target
bcde94ed4e934d908c4a493dfc156479_JaffaCakes118
-
Size
100KB
-
MD5
bcde94ed4e934d908c4a493dfc156479
-
SHA1
6ca1d92439c34c4d2379b580a62bb42aba1aad4c
-
SHA256
bfdf9f9ad699fe7fbc729805c2599c248a9a4dadd88456685426bfd78b824bf8
-
SHA512
ea0b27b73ca0b6d8fc834e1be430210965835381c29d599f54a23f6c257dc8b251897ab0fed11074857ca6034914cae9ef4330a5aa32a4f6bfebab968166e5e3
-
SSDEEP
1536:Fts8iAuismywsbUgLw0wF9MGM9K/oKtNgCMbA1bL3N+NM5UfpNIjnZzb:gQg/KLOM5iCnBb
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2