General
-
Target
dd7cd737928883b04d89fe93f429952f_JaffaCakes118
-
Size
248KB
-
Sample
240913-cy85mazdjb
-
MD5
dd7cd737928883b04d89fe93f429952f
-
SHA1
0f76e216f3f8253d7e37a2d33c2117ba7bf82bfc
-
SHA256
e594a33eadc4514bdbeaa81e77834bc1b979256f3e9e8147da3962ef12ed95ab
-
SHA512
4fe430b0103d9ab1e727c1af49d8c094c6f53eae9c241e5b7a517ea72a77ed666a3b2ec0836f7b19c553e33a6b7613d6c55e2ee3a22b052657608153687f0641
-
SSDEEP
6144:B5LUCBFkNsUIioDF54VY2fRNhps0CwZh5gUl35TH3Hddr88/D+U:kfX5TXHddr8qqU
Malware Config
Targets
-
-
Target
dd7cd737928883b04d89fe93f429952f_JaffaCakes118
-
Size
248KB
-
MD5
dd7cd737928883b04d89fe93f429952f
-
SHA1
0f76e216f3f8253d7e37a2d33c2117ba7bf82bfc
-
SHA256
e594a33eadc4514bdbeaa81e77834bc1b979256f3e9e8147da3962ef12ed95ab
-
SHA512
4fe430b0103d9ab1e727c1af49d8c094c6f53eae9c241e5b7a517ea72a77ed666a3b2ec0836f7b19c553e33a6b7613d6c55e2ee3a22b052657608153687f0641
-
SSDEEP
6144:B5LUCBFkNsUIioDF54VY2fRNhps0CwZh5gUl35TH3Hddr88/D+U:kfX5TXHddr8qqU
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2