General
-
Target
ed66336bb3e2a4ce6d273e2fc8590cf7_JaffaCakes118
-
Size
124KB
-
Sample
240920-mk2thascjj
-
MD5
ed66336bb3e2a4ce6d273e2fc8590cf7
-
SHA1
962388923d00cb84582e1bb71fb368b115f03e45
-
SHA256
587f2536ea0bdb4caf2c375de4078299a1a45fa17b561bd7b060229051a72cb0
-
SHA512
6970af46feb16fde8b0be91e0e3c1ce3d4bee34d2d590e71b5181d0be4ed4c319411418a466f44fad4fce1a08e1e08533cf1204842d18277459a841d3a3e3b54
-
SSDEEP
1536:9VEthwRnuBxeDtMYHa27J14ltxporZ45izNeG0h/x:bEthwRnkeV6gJ1uCt45Jp
Malware Config
Targets
-
-
Target
ed66336bb3e2a4ce6d273e2fc8590cf7_JaffaCakes118
-
Size
124KB
-
MD5
ed66336bb3e2a4ce6d273e2fc8590cf7
-
SHA1
962388923d00cb84582e1bb71fb368b115f03e45
-
SHA256
587f2536ea0bdb4caf2c375de4078299a1a45fa17b561bd7b060229051a72cb0
-
SHA512
6970af46feb16fde8b0be91e0e3c1ce3d4bee34d2d590e71b5181d0be4ed4c319411418a466f44fad4fce1a08e1e08533cf1204842d18277459a841d3a3e3b54
-
SSDEEP
1536:9VEthwRnuBxeDtMYHa27J14ltxporZ45izNeG0h/x:bEthwRnkeV6gJ1uCt45Jp
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2