General
-
Target
edf3a6968b4938519fd096682419ff12_JaffaCakes118
-
Size
136KB
-
Sample
240920-tj6jmavhll
-
MD5
edf3a6968b4938519fd096682419ff12
-
SHA1
8419b33e41989b7a77a296bbb5444a41cffb1031
-
SHA256
9ab968da87155754eaea29c155c96c4561570a62c2287f1392527d4ab263849d
-
SHA512
c1744880d982bd11d8e60adfa6893391cda1ca5288e0bb4a54e90f6040351643a648fab35e22d7f00ae650141eba11f9991830aeeab7013b4d04c9cd6b5b6dc2
-
SSDEEP
1536:g4ahqRI+BhRKRmH2GijPEUbaxnvdWkNqSP3PKh9pGw93mW9bcGwh+8hcXZDuS8Hn:vd6EUbaxv13wpUh2XZDutcHdVmn8+wo
Malware Config
Targets
-
-
Target
edf3a6968b4938519fd096682419ff12_JaffaCakes118
-
Size
136KB
-
MD5
edf3a6968b4938519fd096682419ff12
-
SHA1
8419b33e41989b7a77a296bbb5444a41cffb1031
-
SHA256
9ab968da87155754eaea29c155c96c4561570a62c2287f1392527d4ab263849d
-
SHA512
c1744880d982bd11d8e60adfa6893391cda1ca5288e0bb4a54e90f6040351643a648fab35e22d7f00ae650141eba11f9991830aeeab7013b4d04c9cd6b5b6dc2
-
SSDEEP
1536:g4ahqRI+BhRKRmH2GijPEUbaxnvdWkNqSP3PKh9pGw93mW9bcGwh+8hcXZDuS8Hn:vd6EUbaxv13wpUh2XZDutcHdVmn8+wo
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2