General
-
Target
e096c7c72021fbdae6c44ee6d8c554f4_JaffaCakes118
-
Size
728KB
-
Sample
240914-t5e9kathrg
-
MD5
e096c7c72021fbdae6c44ee6d8c554f4
-
SHA1
23e1d2c6d413019a266206e6a00e01bad02694da
-
SHA256
888b74af317778b3c9c4dc6950968dab10306a6485d5a1cb91f88d05e9fa437b
-
SHA512
d24d29555328185975a1529b9e0c1b8308e1fda6e9a149244ee65f69f370a6293c16875b7632f11b1b9c62136a49ca08828b703780aedfb2e54ccbbcc606517b
-
SSDEEP
12288:z2/I3CMZC4u8YBbY5zgHWHmt8qMgmmcKDgGeItoEc9GspWZhASRXHYnrmr:z2QSmCrmgHCmKqMgkKlFtov9GsqRXHYw
Malware Config
Targets
-
-
Target
e096c7c72021fbdae6c44ee6d8c554f4_JaffaCakes118
-
Size
728KB
-
MD5
e096c7c72021fbdae6c44ee6d8c554f4
-
SHA1
23e1d2c6d413019a266206e6a00e01bad02694da
-
SHA256
888b74af317778b3c9c4dc6950968dab10306a6485d5a1cb91f88d05e9fa437b
-
SHA512
d24d29555328185975a1529b9e0c1b8308e1fda6e9a149244ee65f69f370a6293c16875b7632f11b1b9c62136a49ca08828b703780aedfb2e54ccbbcc606517b
-
SSDEEP
12288:z2/I3CMZC4u8YBbY5zgHWHmt8qMgmmcKDgGeItoEc9GspWZhASRXHYnrmr:z2QSmCrmgHCmKqMgkKlFtov9GsqRXHYw
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1