General
-
Target
ea3ce73cc41b6fc505d77e2ce9669935_JaffaCakes118
-
Size
100KB
-
Sample
240919-ak94na1cmm
-
MD5
ea3ce73cc41b6fc505d77e2ce9669935
-
SHA1
5153e912cdc99b76d54c44d40c22201a7234506b
-
SHA256
8a87d24d740440f34a7bd258ffeb3f05850bbc52011555481dc908b75f33b6b0
-
SHA512
7cff62bebec9c23d27af1d0deb33621d4849014a5538e12a5cf40ab7a81f1dfdf25465379d6729d9f168973fe50594c68b3ced353c8b66c71bf0d13efa20dceb
-
SSDEEP
1536:n9tGY82NTzwdMGAc4ohrPXo+73Rez8b0SyKNIjnZrJ:1wUurPX7CKCnlJ
Malware Config
Targets
-
-
Target
ea3ce73cc41b6fc505d77e2ce9669935_JaffaCakes118
-
Size
100KB
-
MD5
ea3ce73cc41b6fc505d77e2ce9669935
-
SHA1
5153e912cdc99b76d54c44d40c22201a7234506b
-
SHA256
8a87d24d740440f34a7bd258ffeb3f05850bbc52011555481dc908b75f33b6b0
-
SHA512
7cff62bebec9c23d27af1d0deb33621d4849014a5538e12a5cf40ab7a81f1dfdf25465379d6729d9f168973fe50594c68b3ced353c8b66c71bf0d13efa20dceb
-
SSDEEP
1536:n9tGY82NTzwdMGAc4ohrPXo+73Rez8b0SyKNIjnZrJ:1wUurPX7CKCnlJ
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2