General
-
Target
c83608910a60618d03c39c7a7ca2fedb_JaffaCakes118
-
Size
76KB
-
Sample
240829-evah1atbke
-
MD5
c83608910a60618d03c39c7a7ca2fedb
-
SHA1
a6d187ed3973f96e6d707d9891d7a51b24917c24
-
SHA256
bed0723c1fd2eb282bbbbedf432d837b5c4c874c32774b54c054a09aee7697eb
-
SHA512
6be5442e5d104f958542da96205a23d5e06a3f0e6853c88b32cd514318bc7b1f47547689d1bf0d23b24f29a83eb1c8a29c6148bba75c8a362d22af1309642b84
-
SSDEEP
768:MembNRqsuhlGOBrhgFwumSCbxTGy/BBGg4NKJJKqUThbJ32+ve7i40vN0TlT+Xk+:Gnqdu3abBGy3G8V0iuo2j
Malware Config
Targets
-
-
Target
c83608910a60618d03c39c7a7ca2fedb_JaffaCakes118
-
Size
76KB
-
MD5
c83608910a60618d03c39c7a7ca2fedb
-
SHA1
a6d187ed3973f96e6d707d9891d7a51b24917c24
-
SHA256
bed0723c1fd2eb282bbbbedf432d837b5c4c874c32774b54c054a09aee7697eb
-
SHA512
6be5442e5d104f958542da96205a23d5e06a3f0e6853c88b32cd514318bc7b1f47547689d1bf0d23b24f29a83eb1c8a29c6148bba75c8a362d22af1309642b84
-
SSDEEP
768:MembNRqsuhlGOBrhgFwumSCbxTGy/BBGg4NKJJKqUThbJ32+ve7i40vN0TlT+Xk+:Gnqdu3abBGy3G8V0iuo2j
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1Defense Evasion
Hide Artifacts
2Hidden Files and Directories
2Modify Registry
4