General
-
Target
f98565c36c74dc77865596a4d8685246_JaffaCakes118
-
Size
156KB
-
Sample
240927-cp7v7szeqq
-
MD5
f98565c36c74dc77865596a4d8685246
-
SHA1
5b9716a9a46e886776652b249fc9eeea6fd8e0f1
-
SHA256
2fac95a123af2d48e5ea3f37367004d93d2016eb345160b16a2a83a3974b1708
-
SHA512
6d99fd03fe40a6ae702c1c57ecf700ee32b71e8c249354e9482d95d065fe10cc5d22fc27b13c0aa970bdd6166aaa42cc62877774d03ffdf1b212f540b14829a2
-
SSDEEP
3072:lHpLdexOFxlLzrQF0T8ZnPZihF3KYGnUujyOjs6UvVXPRQDE5j4oQ:toOFxxrQJ0r3KYGnljw6AXld
Malware Config
Targets
-
-
Target
f98565c36c74dc77865596a4d8685246_JaffaCakes118
-
Size
156KB
-
MD5
f98565c36c74dc77865596a4d8685246
-
SHA1
5b9716a9a46e886776652b249fc9eeea6fd8e0f1
-
SHA256
2fac95a123af2d48e5ea3f37367004d93d2016eb345160b16a2a83a3974b1708
-
SHA512
6d99fd03fe40a6ae702c1c57ecf700ee32b71e8c249354e9482d95d065fe10cc5d22fc27b13c0aa970bdd6166aaa42cc62877774d03ffdf1b212f540b14829a2
-
SSDEEP
3072:lHpLdexOFxlLzrQF0T8ZnPZihF3KYGnUujyOjs6UvVXPRQDE5j4oQ:toOFxxrQJ0r3KYGnljw6AXld
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2