General
-
Target
ec7daead09eb7bce418ba2a9ad9ce58d_JaffaCakes118
-
Size
124KB
-
Sample
240920-awe3nazame
-
MD5
ec7daead09eb7bce418ba2a9ad9ce58d
-
SHA1
1f4e004af52a78bc1558b9f2c94f815a9e75b308
-
SHA256
02761a9286c2a6bdd3a59e7079369a0f56ddf2ebd1b0bea7030030c1bc3af4eb
-
SHA512
7635f3737d838a384657ff01cf231f81fa21adb13a3d1434e472d4a0592a0135e48819105cb35151393faa7cf976b3375cd30c3d596fb1975d894909f5052d0f
-
SSDEEP
1536:7YtkjVTQ4iU0GgAJa0P1kNmKldCMhdu8KWP/nTn8nBP9VeUPNeG0h/:Ckjq4iU0GgAT9xI
Malware Config
Targets
-
-
Target
ec7daead09eb7bce418ba2a9ad9ce58d_JaffaCakes118
-
Size
124KB
-
MD5
ec7daead09eb7bce418ba2a9ad9ce58d
-
SHA1
1f4e004af52a78bc1558b9f2c94f815a9e75b308
-
SHA256
02761a9286c2a6bdd3a59e7079369a0f56ddf2ebd1b0bea7030030c1bc3af4eb
-
SHA512
7635f3737d838a384657ff01cf231f81fa21adb13a3d1434e472d4a0592a0135e48819105cb35151393faa7cf976b3375cd30c3d596fb1975d894909f5052d0f
-
SSDEEP
1536:7YtkjVTQ4iU0GgAJa0P1kNmKldCMhdu8KWP/nTn8nBP9VeUPNeG0h/:Ckjq4iU0GgAT9xI
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2