General
-
Target
ecd993dc49bb79ba7ca9db224f41c60a_JaffaCakes118
-
Size
124KB
-
Sample
240920-e7namazajn
-
MD5
ecd993dc49bb79ba7ca9db224f41c60a
-
SHA1
1c7a03cc7c3a92f700c4ff947a1b860a3acafc89
-
SHA256
33780d9b1e81c54c8cb6ae957f2fc6ce164bd55cc00b2e55a7754f4a8fa78089
-
SHA512
6c6908d398724176909350a752302c853615191f20769781424f4a82900d2b5305df0f0fd7520deea6faea3f7e8842cb36d6dc54297f694dd75e45a2284e9158
-
SSDEEP
1536:tytkjbTQCdMr0JU0GgAJa0P1kNmKldCMhdu8KWP/nTn8nBP9VeJXNeG0h/l:Gkjgr0JU0GgAT9QQt
Malware Config
Targets
-
-
Target
ecd993dc49bb79ba7ca9db224f41c60a_JaffaCakes118
-
Size
124KB
-
MD5
ecd993dc49bb79ba7ca9db224f41c60a
-
SHA1
1c7a03cc7c3a92f700c4ff947a1b860a3acafc89
-
SHA256
33780d9b1e81c54c8cb6ae957f2fc6ce164bd55cc00b2e55a7754f4a8fa78089
-
SHA512
6c6908d398724176909350a752302c853615191f20769781424f4a82900d2b5305df0f0fd7520deea6faea3f7e8842cb36d6dc54297f694dd75e45a2284e9158
-
SSDEEP
1536:tytkjbTQCdMr0JU0GgAJa0P1kNmKldCMhdu8KWP/nTn8nBP9VeJXNeG0h/l:Gkjgr0JU0GgAT9QQt
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2