General
-
Target
edec326a3bdbf5a69125a1887281d4fd_JaffaCakes118
-
Size
124KB
-
Sample
240920-s9svsavajd
-
MD5
edec326a3bdbf5a69125a1887281d4fd
-
SHA1
e2d53ba2d0380d1a4a28e8e2357bfb0dc5435103
-
SHA256
4df2b9ceaac2d7408e97b45a74f744ec03c9d21efea6552e97fa2864d217fd23
-
SHA512
cc47b8a9cc93d23d9ea8d3b4a42cbc9d110b899bf03d37171c84656707675e24a4a623cba2161e28ed3554fe9f6b8b1321bacf0f65acd033757fc9039be00749
-
SSDEEP
1536:8atkjyTQ3QU0GgAJa0P1kNmKldCMhdu8KWP/nTn8nBP9VewNeG0h/l:5kjx3QU0GgAT98t
Malware Config
Targets
-
-
Target
edec326a3bdbf5a69125a1887281d4fd_JaffaCakes118
-
Size
124KB
-
MD5
edec326a3bdbf5a69125a1887281d4fd
-
SHA1
e2d53ba2d0380d1a4a28e8e2357bfb0dc5435103
-
SHA256
4df2b9ceaac2d7408e97b45a74f744ec03c9d21efea6552e97fa2864d217fd23
-
SHA512
cc47b8a9cc93d23d9ea8d3b4a42cbc9d110b899bf03d37171c84656707675e24a4a623cba2161e28ed3554fe9f6b8b1321bacf0f65acd033757fc9039be00749
-
SSDEEP
1536:8atkjyTQ3QU0GgAJa0P1kNmKldCMhdu8KWP/nTn8nBP9VewNeG0h/l:5kjx3QU0GgAT98t
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2