General
-
Target
bd334a38a2d6295c6c53084eac3a78bc_JaffaCakes118
-
Size
728KB
-
Sample
240823-z7c5waxclb
-
MD5
bd334a38a2d6295c6c53084eac3a78bc
-
SHA1
83d40949071092415b284a202a125c79a9c49352
-
SHA256
743c489e6bc73e81d31bc55293f742f263e4a25ae7087261f3a22bdb0165a0ea
-
SHA512
7adafd9768a8ae4d23726f5770a389613c1d5fb3a60453392101632b004f2cc3006addd22e1165520e58f8d4b8a3bef9e32b9986e948701b9c3340f4fd29eaa5
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXx/meGDgGeItoEc9GspWZhASRXHYnrm/:lEc8H5fMLN2Kb7xrGlFtov9GsqRXHYr8
Malware Config
Targets
-
-
Target
bd334a38a2d6295c6c53084eac3a78bc_JaffaCakes118
-
Size
728KB
-
MD5
bd334a38a2d6295c6c53084eac3a78bc
-
SHA1
83d40949071092415b284a202a125c79a9c49352
-
SHA256
743c489e6bc73e81d31bc55293f742f263e4a25ae7087261f3a22bdb0165a0ea
-
SHA512
7adafd9768a8ae4d23726f5770a389613c1d5fb3a60453392101632b004f2cc3006addd22e1165520e58f8d4b8a3bef9e32b9986e948701b9c3340f4fd29eaa5
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXx/meGDgGeItoEc9GspWZhASRXHYnrm/:lEc8H5fMLN2Kb7xrGlFtov9GsqRXHYr8
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1