General
-
Target
d3bb3c871a045fb100ab8b589a8c9499_JaffaCakes118
-
Size
384KB
-
Sample
240908-g3br5stape
-
MD5
d3bb3c871a045fb100ab8b589a8c9499
-
SHA1
9e568d839dd212915f4565890172b7b336a9aafc
-
SHA256
aafbe46b34582c1af07c50da72a21219537c25927cf241ad60f4bff7b518a25b
-
SHA512
fc98b76e804d33099bb674a81302e790bed413e32008c53ec61605dbd081105e1ad855950c926192fa2d4f29ec2bc29bf0ed62d9a0ce968dae26ea796f46d17a
-
SSDEEP
6144:Ustj9IYdG6uM4a2TURdxDZ23w8QEoKHjWZLKBPvHIWMW:C7a9Z2A81vWpaPvD
Malware Config
Targets
-
-
Target
d3bb3c871a045fb100ab8b589a8c9499_JaffaCakes118
-
Size
384KB
-
MD5
d3bb3c871a045fb100ab8b589a8c9499
-
SHA1
9e568d839dd212915f4565890172b7b336a9aafc
-
SHA256
aafbe46b34582c1af07c50da72a21219537c25927cf241ad60f4bff7b518a25b
-
SHA512
fc98b76e804d33099bb674a81302e790bed413e32008c53ec61605dbd081105e1ad855950c926192fa2d4f29ec2bc29bf0ed62d9a0ce968dae26ea796f46d17a
-
SSDEEP
6144:Ustj9IYdG6uM4a2TURdxDZ23w8QEoKHjWZLKBPvHIWMW:C7a9Z2A81vWpaPvD
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2