General
-
Target
ede790d07b419739937be86818df19ae_JaffaCakes118
-
Size
88KB
-
Sample
240920-s3l4natfka
-
MD5
ede790d07b419739937be86818df19ae
-
SHA1
6f17153a706836bc0dea514f9831fa4cec7073cb
-
SHA256
68c0c78220273abed023c00abe66afd80134b872deb0d2b517d82a858a8af8ca
-
SHA512
95f200943ca101905bb4e6dec50395b16104aaf326568b5b1557ab3cf01e7cfb3fbbc6be79d189dd8306371e7fbaa52f53c8aecf1bcf9991627c470de1e341a8
-
SSDEEP
768:/DFIbMyuddaqnObOasGEwU8Z1Rbe2kjEQJQ1H7a8zFkzqcw+6HOj:pIAyfiCU8Z1QjEQJecw+6H
Malware Config
Targets
-
-
Target
ede790d07b419739937be86818df19ae_JaffaCakes118
-
Size
88KB
-
MD5
ede790d07b419739937be86818df19ae
-
SHA1
6f17153a706836bc0dea514f9831fa4cec7073cb
-
SHA256
68c0c78220273abed023c00abe66afd80134b872deb0d2b517d82a858a8af8ca
-
SHA512
95f200943ca101905bb4e6dec50395b16104aaf326568b5b1557ab3cf01e7cfb3fbbc6be79d189dd8306371e7fbaa52f53c8aecf1bcf9991627c470de1e341a8
-
SSDEEP
768:/DFIbMyuddaqnObOasGEwU8Z1Rbe2kjEQJQ1H7a8zFkzqcw+6HOj:pIAyfiCU8Z1QjEQJecw+6H
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2