General
-
Target
ee9b45b9c15e7e66b53c3392a9290028_JaffaCakes118
-
Size
124KB
-
Sample
240920-23mvmatcqj
-
MD5
ee9b45b9c15e7e66b53c3392a9290028
-
SHA1
7652e72345e4e5c74b9db60b5ba9f98d9287eb2c
-
SHA256
d82e2f6f1c793ddd075131e7b95145ec095a2b4a8773b0edc13f5f3231ffc3c4
-
SHA512
228f3946943967d049ff071efbe955b72461bc7a5084dcb2e1bad6b93e7617f52910a2678571aef2b21dcf9094876879a733061b23f46c87884dc79a9d2c1d8a
-
SSDEEP
1536:B8ZnFF/xrWaYkiQixA+alh98t8aF9USvXjykwo7JaS1:GZnFF/xrWejH8tq8TwQL
Malware Config
Targets
-
-
Target
ee9b45b9c15e7e66b53c3392a9290028_JaffaCakes118
-
Size
124KB
-
MD5
ee9b45b9c15e7e66b53c3392a9290028
-
SHA1
7652e72345e4e5c74b9db60b5ba9f98d9287eb2c
-
SHA256
d82e2f6f1c793ddd075131e7b95145ec095a2b4a8773b0edc13f5f3231ffc3c4
-
SHA512
228f3946943967d049ff071efbe955b72461bc7a5084dcb2e1bad6b93e7617f52910a2678571aef2b21dcf9094876879a733061b23f46c87884dc79a9d2c1d8a
-
SSDEEP
1536:B8ZnFF/xrWaYkiQixA+alh98t8aF9USvXjykwo7JaS1:GZnFF/xrWejH8tq8TwQL
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2