General
-
Target
e15c83ecba0c788ab1419c1aac6aec08_JaffaCakes118
-
Size
728KB
-
Sample
240915-a1fjzswekf
-
MD5
e15c83ecba0c788ab1419c1aac6aec08
-
SHA1
d57063b012b6257d56f95e2f2be0ef07f7811621
-
SHA256
e5fd703641bb694b36f884743c140e216ea17a24ccc8392512d06b459a421f9f
-
SHA512
c137cd78293759e92b314ea4dbc20f5438d7ef9115585385d075544f63ba5d1a1ec0b3aff21360eee44dcb088d6c766e56f65f341b2bd9eb282afea3872b3e6f
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXt/meGDgGeItoEc9GspWZhASRXHYnrmY:lEc8H5fMLN2Kb7trGlFtov9GsqRXHYrv
Malware Config
Targets
-
-
Target
e15c83ecba0c788ab1419c1aac6aec08_JaffaCakes118
-
Size
728KB
-
MD5
e15c83ecba0c788ab1419c1aac6aec08
-
SHA1
d57063b012b6257d56f95e2f2be0ef07f7811621
-
SHA256
e5fd703641bb694b36f884743c140e216ea17a24ccc8392512d06b459a421f9f
-
SHA512
c137cd78293759e92b314ea4dbc20f5438d7ef9115585385d075544f63ba5d1a1ec0b3aff21360eee44dcb088d6c766e56f65f341b2bd9eb282afea3872b3e6f
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXt/meGDgGeItoEc9GspWZhASRXHYnrmY:lEc8H5fMLN2Kb7trGlFtov9GsqRXHYrv
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1