General
-
Target
dbb90a11331aead918c5962f15e4e83d_JaffaCakes118
-
Size
783KB
-
Sample
240912-dxfx5ayepn
-
MD5
dbb90a11331aead918c5962f15e4e83d
-
SHA1
96cb2fb2fd3e52c469499a2c8ab68448db5034c8
-
SHA256
7943c594bb8b47b760d9eafd9eb99f0a08ce875b23ee00f29decaef47da9cb9a
-
SHA512
172bf6a08b1fcdc0e2880da74804acbcc66e4c33bfc11407fb04a08012f92214e14540aa79dc754cf9e2cefb1e783ca129efa52676fe3b5e7a285a40a77f665d
-
SSDEEP
24576:xyrSMgIRRD9lcT0w1mlFtWVqrqRXHYrm4:Mr1H5R3WVqrYHYD
Malware Config
Targets
-
-
Target
dbb90a11331aead918c5962f15e4e83d_JaffaCakes118
-
Size
783KB
-
MD5
dbb90a11331aead918c5962f15e4e83d
-
SHA1
96cb2fb2fd3e52c469499a2c8ab68448db5034c8
-
SHA256
7943c594bb8b47b760d9eafd9eb99f0a08ce875b23ee00f29decaef47da9cb9a
-
SHA512
172bf6a08b1fcdc0e2880da74804acbcc66e4c33bfc11407fb04a08012f92214e14540aa79dc754cf9e2cefb1e783ca129efa52676fe3b5e7a285a40a77f665d
-
SSDEEP
24576:xyrSMgIRRD9lcT0w1mlFtWVqrqRXHYrm4:Mr1H5R3WVqrYHYD
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1