General
-
Target
eeb3650eedafbb0b6aa687dc42c1c794_JaffaCakes118
-
Size
232KB
-
Sample
240921-ad4cjawcjp
-
MD5
eeb3650eedafbb0b6aa687dc42c1c794
-
SHA1
48c2c09fec2ad9d4dc2e1225cb67b8610f466305
-
SHA256
5917b5c6c74b7a1d4f82568b23ef29a6c6b22c8a7fa54064ab6d65322ff1711f
-
SHA512
de516a4b31958b7268366e2dc467a9fa1679a46e31826dfb6372ce304599f785e47954cf7a9b36823002bdc54870be61088d6881507700482a6cde3977628a27
-
SSDEEP
6144:D3PFKs7dizxRJFBfWEqxF6snji81RUinK5qjbkxYu1S+:DPhYTBXibkx91L
Malware Config
Targets
-
-
Target
eeb3650eedafbb0b6aa687dc42c1c794_JaffaCakes118
-
Size
232KB
-
MD5
eeb3650eedafbb0b6aa687dc42c1c794
-
SHA1
48c2c09fec2ad9d4dc2e1225cb67b8610f466305
-
SHA256
5917b5c6c74b7a1d4f82568b23ef29a6c6b22c8a7fa54064ab6d65322ff1711f
-
SHA512
de516a4b31958b7268366e2dc467a9fa1679a46e31826dfb6372ce304599f785e47954cf7a9b36823002bdc54870be61088d6881507700482a6cde3977628a27
-
SSDEEP
6144:D3PFKs7dizxRJFBfWEqxF6snji81RUinK5qjbkxYu1S+:DPhYTBXibkx91L
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2