General
-
Target
eca07343a29f02622e4edf30e8e6886f_JaffaCakes118
-
Size
156KB
-
Sample
240920-cgdbmatbkg
-
MD5
eca07343a29f02622e4edf30e8e6886f
-
SHA1
287c622cbb8ec2172b430d7ae463fb99ebd9c7e9
-
SHA256
5ff32d14b8102a2bb17fa421f3f19875f3f7f13f8307dce8478f13d803689504
-
SHA512
54a29deb5aeaa8086f9cb0bd843f29559181d6899d433c08b3db8b3287175437d2c616a07ab7165952a056c68104827007ca6426934a1e893710185479b3c83e
-
SSDEEP
3072:SHpLdWxOFxlLzrQF0T8ZnPZihF3KYGnUujyOjs6UvVXiRI4oQZiE0/Q:IwOFxxrQJ0r3KYGnljw6AXdWn
Malware Config
Targets
-
-
Target
eca07343a29f02622e4edf30e8e6886f_JaffaCakes118
-
Size
156KB
-
MD5
eca07343a29f02622e4edf30e8e6886f
-
SHA1
287c622cbb8ec2172b430d7ae463fb99ebd9c7e9
-
SHA256
5ff32d14b8102a2bb17fa421f3f19875f3f7f13f8307dce8478f13d803689504
-
SHA512
54a29deb5aeaa8086f9cb0bd843f29559181d6899d433c08b3db8b3287175437d2c616a07ab7165952a056c68104827007ca6426934a1e893710185479b3c83e
-
SSDEEP
3072:SHpLdWxOFxlLzrQF0T8ZnPZihF3KYGnUujyOjs6UvVXiRI4oQZiE0/Q:IwOFxxrQJ0r3KYGnljw6AXdWn
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2