General
-
Target
ed231a6753c07a002b10283efd0e6b63_JaffaCakes118
-
Size
156KB
-
Sample
240920-jnnt9swbka
-
MD5
ed231a6753c07a002b10283efd0e6b63
-
SHA1
b5f636d18bd80a0873e2da345fa5ea8e74c7cb18
-
SHA256
c3962e199ecd8b4c350e1ca3fe52045b7e3d42596aae0165259a96ccb0ff364b
-
SHA512
8b0ed166cd2209ac89d1632687009a06684c3c58b8b42366fd792bc7dd0dc144dd263bc3788bde67a3927a0bbe883fd2b4a10b4fff162f8c6b86a08f11aa39cd
-
SSDEEP
3072:Ru/j0/TZwR0V44ZeNeGVuLH/gefYMmsyvrdmo6aKqpaZ4oQZiEPcA:MeKRakVu7/lfYfhBmTvWZ
Malware Config
Targets
-
-
Target
ed231a6753c07a002b10283efd0e6b63_JaffaCakes118
-
Size
156KB
-
MD5
ed231a6753c07a002b10283efd0e6b63
-
SHA1
b5f636d18bd80a0873e2da345fa5ea8e74c7cb18
-
SHA256
c3962e199ecd8b4c350e1ca3fe52045b7e3d42596aae0165259a96ccb0ff364b
-
SHA512
8b0ed166cd2209ac89d1632687009a06684c3c58b8b42366fd792bc7dd0dc144dd263bc3788bde67a3927a0bbe883fd2b4a10b4fff162f8c6b86a08f11aa39cd
-
SSDEEP
3072:Ru/j0/TZwR0V44ZeNeGVuLH/gefYMmsyvrdmo6aKqpaZ4oQZiEPcA:MeKRakVu7/lfYfhBmTvWZ
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2