General
-
Target
d267caecf40ab98581bddb4ac81fb881_JaffaCakes118
-
Size
728KB
-
Sample
240907-vegv5stfrq
-
MD5
d267caecf40ab98581bddb4ac81fb881
-
SHA1
74cb917e4e8ef701a409c3e35c0c7603161f40b2
-
SHA256
2ba6a480aac4913f5325592890aa999de0e0785899428270c79a6d50ebbd829c
-
SHA512
d718317a8d436e60967734b39c8db4f9ee5315ca532ff5ea16159b579524cb9196f99652a2e29bd5cb68cc37ef0b82bec10fdee86477abfc6d92f437a31ef0d0
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXi/meGDgGeItoEc9GspWZhASRXHYnrmU:lEc8H5fMLN2Kb7irGlFtov9GsqRXHYrX
Malware Config
Targets
-
-
Target
d267caecf40ab98581bddb4ac81fb881_JaffaCakes118
-
Size
728KB
-
MD5
d267caecf40ab98581bddb4ac81fb881
-
SHA1
74cb917e4e8ef701a409c3e35c0c7603161f40b2
-
SHA256
2ba6a480aac4913f5325592890aa999de0e0785899428270c79a6d50ebbd829c
-
SHA512
d718317a8d436e60967734b39c8db4f9ee5315ca532ff5ea16159b579524cb9196f99652a2e29bd5cb68cc37ef0b82bec10fdee86477abfc6d92f437a31ef0d0
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXi/meGDgGeItoEc9GspWZhASRXHYnrmU:lEc8H5fMLN2Kb7irGlFtov9GsqRXHYrX
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1