General
-
Target
d2516e2f0fe4756f1d5c1eed4ca43301_JaffaCakes118
-
Size
221KB
-
Sample
240907-tjc73ssanj
-
MD5
d2516e2f0fe4756f1d5c1eed4ca43301
-
SHA1
067e88ace29e706abf8b0c469cf9924427a66c8c
-
SHA256
c29fd3e4f78b32ad09b1e4a978066cc6dbb8c3fa682182a0b72ac18c80a31034
-
SHA512
0f9fb28a52dc48459f1e6c4eb8721e65c7d1d7c823c42ad52a4166afb187c9f42453f2d95feef6884e469bff50a21a0f1758545340cb38cab5674f0b7fee7f8d
-
SSDEEP
6144:c47z+6AHTBj823Bdiup1L3X4NN4dUMiwBCvS6A:06UTx8svpF3X4NN4dZF
Malware Config
Targets
-
-
Target
d2516e2f0fe4756f1d5c1eed4ca43301_JaffaCakes118
-
Size
221KB
-
MD5
d2516e2f0fe4756f1d5c1eed4ca43301
-
SHA1
067e88ace29e706abf8b0c469cf9924427a66c8c
-
SHA256
c29fd3e4f78b32ad09b1e4a978066cc6dbb8c3fa682182a0b72ac18c80a31034
-
SHA512
0f9fb28a52dc48459f1e6c4eb8721e65c7d1d7c823c42ad52a4166afb187c9f42453f2d95feef6884e469bff50a21a0f1758545340cb38cab5674f0b7fee7f8d
-
SSDEEP
6144:c47z+6AHTBj823Bdiup1L3X4NN4dUMiwBCvS6A:06UTx8svpF3X4NN4dZF
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Privilege Escalation
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1