General
-
Target
c8d06fff5e36dfcb3630cd34bbffee84_JaffaCakes118
-
Size
728KB
-
Sample
240829-plr2ss1epd
-
MD5
c8d06fff5e36dfcb3630cd34bbffee84
-
SHA1
55aa576af57d0fb142fdbfb8fc9000d6bcf79687
-
SHA256
dc0cc506778b50e955b1ce70812f73f124072ecfd6184ae04a4c2e09eb6b3ce5
-
SHA512
66406e6ddfff57d615d3a139d84717ab736a2defceab107e93eb08ec2c95409c64828a010772d8a61a760b36f5896f871d16a89621358bd4294c8c8a89486a88
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXz/meGDgGeItoEc9GspWZhASRXHYnrmf:lEc8H5fMLN2Kb7zrGlFtov9GsqRXHYr4
Malware Config
Targets
-
-
Target
c8d06fff5e36dfcb3630cd34bbffee84_JaffaCakes118
-
Size
728KB
-
MD5
c8d06fff5e36dfcb3630cd34bbffee84
-
SHA1
55aa576af57d0fb142fdbfb8fc9000d6bcf79687
-
SHA256
dc0cc506778b50e955b1ce70812f73f124072ecfd6184ae04a4c2e09eb6b3ce5
-
SHA512
66406e6ddfff57d615d3a139d84717ab736a2defceab107e93eb08ec2c95409c64828a010772d8a61a760b36f5896f871d16a89621358bd4294c8c8a89486a88
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXz/meGDgGeItoEc9GspWZhASRXHYnrmf:lEc8H5fMLN2Kb7zrGlFtov9GsqRXHYr4
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1