General
-
Target
eec5f7bf5ecbd444eaa6890dcd4d663c_JaffaCakes118
-
Size
124KB
-
Sample
240921-bc9ctsxgmr
-
MD5
eec5f7bf5ecbd444eaa6890dcd4d663c
-
SHA1
f3f529e5339bc0d7ac2b84438c0d952120b0bdb2
-
SHA256
1cb7ff56548c5ff93c76ec036c9b8f65dca24e774ea1fc6d60968b19ef8cb0cc
-
SHA512
187d1fe572fd987231583a1ab07ddbfd4dccfb11f6d32d347e249d522dd5de15cd47b9ceb5a7e154ef74ed2e97706c2257bd6e8b6488b2d0e2fd22b414f8f9f8
-
SSDEEP
1536:KtEvhwRSsuBxeDtMYHa27J14ltxporZ45iMNeG0h/y:yEvhwRSskeV6gJ1uCt45eq
Malware Config
Targets
-
-
Target
eec5f7bf5ecbd444eaa6890dcd4d663c_JaffaCakes118
-
Size
124KB
-
MD5
eec5f7bf5ecbd444eaa6890dcd4d663c
-
SHA1
f3f529e5339bc0d7ac2b84438c0d952120b0bdb2
-
SHA256
1cb7ff56548c5ff93c76ec036c9b8f65dca24e774ea1fc6d60968b19ef8cb0cc
-
SHA512
187d1fe572fd987231583a1ab07ddbfd4dccfb11f6d32d347e249d522dd5de15cd47b9ceb5a7e154ef74ed2e97706c2257bd6e8b6488b2d0e2fd22b414f8f9f8
-
SSDEEP
1536:KtEvhwRSsuBxeDtMYHa27J14ltxporZ45iMNeG0h/y:yEvhwRSskeV6gJ1uCt45eq
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2