General
-
Target
eee9a717c80f86e74f3b4ef6a80c6d11_JaffaCakes118
-
Size
124KB
-
Sample
240921-c2pv6a1dnf
-
MD5
eee9a717c80f86e74f3b4ef6a80c6d11
-
SHA1
f67d1e6738df75c3157de14664d3a8df21b6ac2c
-
SHA256
ac01a728e8c2c6f22acb7327e8beefe8a73284f18471a66ab80f4b7dcb7ce46d
-
SHA512
3655b3afd11362ef533ea9c71900d419f56ca0bff456f11f92214b38a7d84b8dd189a3d51e2e8d84c7ec47fffffdc20579123195f3624510a0a9b8c952b97a31
-
SSDEEP
1536:gnEEhwRtuBxeDtMYHa27J14ltxporZ45i8NeG0h/l:GEEhwRtkeV6gJ1uCt45yt
Malware Config
Targets
-
-
Target
eee9a717c80f86e74f3b4ef6a80c6d11_JaffaCakes118
-
Size
124KB
-
MD5
eee9a717c80f86e74f3b4ef6a80c6d11
-
SHA1
f67d1e6738df75c3157de14664d3a8df21b6ac2c
-
SHA256
ac01a728e8c2c6f22acb7327e8beefe8a73284f18471a66ab80f4b7dcb7ce46d
-
SHA512
3655b3afd11362ef533ea9c71900d419f56ca0bff456f11f92214b38a7d84b8dd189a3d51e2e8d84c7ec47fffffdc20579123195f3624510a0a9b8c952b97a31
-
SSDEEP
1536:gnEEhwRtuBxeDtMYHa27J14ltxporZ45i8NeG0h/l:GEEhwRtkeV6gJ1uCt45yt
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2