General
-
Target
edd1a8cb9e6bd0b2792bd187080327de_JaffaCakes118
-
Size
100KB
-
Sample
240920-r4v8aa1hpb
-
MD5
edd1a8cb9e6bd0b2792bd187080327de
-
SHA1
b6926d6dca25a8a94d88442d7d2e709dcff6917f
-
SHA256
52b68b2139a16e227c23f4d2e8ddfb68ea716ec3792727e777d914418433e5ed
-
SHA512
9b5c78d4d6f01473d1c5fc6bcdb80c49197dd5c9e3c6b4e05a219799609369207a74aae5e656b9181146b8c565f2c1e68e80e2b782e64e03dc7e1794c492a98c
-
SSDEEP
1536:DUtGP82NTzwOMGAc4ohrPXo+73Rez8b0SywNIjni:XwRurPX7CwCni
Malware Config
Targets
-
-
Target
edd1a8cb9e6bd0b2792bd187080327de_JaffaCakes118
-
Size
100KB
-
MD5
edd1a8cb9e6bd0b2792bd187080327de
-
SHA1
b6926d6dca25a8a94d88442d7d2e709dcff6917f
-
SHA256
52b68b2139a16e227c23f4d2e8ddfb68ea716ec3792727e777d914418433e5ed
-
SHA512
9b5c78d4d6f01473d1c5fc6bcdb80c49197dd5c9e3c6b4e05a219799609369207a74aae5e656b9181146b8c565f2c1e68e80e2b782e64e03dc7e1794c492a98c
-
SSDEEP
1536:DUtGP82NTzwOMGAc4ohrPXo+73Rez8b0SywNIjni:XwRurPX7CwCni
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2