General
-
Target
ee312e92a451631e80bb4029d7f0a282_JaffaCakes118
-
Size
108KB
-
Sample
240920-w7npts1fkl
-
MD5
ee312e92a451631e80bb4029d7f0a282
-
SHA1
fd7eb757174ce8167eb5d78ad8346da9c78a6593
-
SHA256
8f5e3e89b59bc6191f1c83e947565b5a7462c17e4858629916097fbb33c967bc
-
SHA512
2c1eb0d9b305a2aab48022ed60d6ba88b9a5b8a6664c2f1d119f4b2665531982df48ffb5a2ffd5d54df7894b95ffe73c3a128abe5244fe915adbd6d81ae946e9
-
SSDEEP
1536:ifX/V5Kjes5mBVKuCrENMRs7IxOLwhJt5G35Xm4ofWmkVpgWKBjWSKM8IVbnOha3:iX/uQCs7IxkWymor8
Malware Config
Targets
-
-
Target
ee312e92a451631e80bb4029d7f0a282_JaffaCakes118
-
Size
108KB
-
MD5
ee312e92a451631e80bb4029d7f0a282
-
SHA1
fd7eb757174ce8167eb5d78ad8346da9c78a6593
-
SHA256
8f5e3e89b59bc6191f1c83e947565b5a7462c17e4858629916097fbb33c967bc
-
SHA512
2c1eb0d9b305a2aab48022ed60d6ba88b9a5b8a6664c2f1d119f4b2665531982df48ffb5a2ffd5d54df7894b95ffe73c3a128abe5244fe915adbd6d81ae946e9
-
SSDEEP
1536:ifX/V5Kjes5mBVKuCrENMRs7IxOLwhJt5G35Xm4ofWmkVpgWKBjWSKM8IVbnOha3:iX/uQCs7IxkWymor8
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2