General
-
Target
fa03227e36cffbd1a537d8957c86fca3_JaffaCakes118
-
Size
60KB
-
Sample
240927-jqaqesvfpf
-
MD5
fa03227e36cffbd1a537d8957c86fca3
-
SHA1
8deca4b5a9f45a62f11b38e1d9ca7868f6035f39
-
SHA256
d5f53c02ca5eb5039e524237fe1366697b1d7dda3b8e11718ae0122d16339be3
-
SHA512
bcb77e0460ac49d198c3721df9e5230505950c3ac91314ae0943977534965a68f865c9fd432b8ada8900e182bec67428f658b3bc7a92e83a030e21c4eac31583
-
SSDEEP
768:T3UpCIyM8x5IPbRU5U6NXUBndTCDhNMRqEnUmtF1e7Ebw1o+goU2oz:T3jDMCqui2WndTmhNMr3tF1Dw1o+go/
Malware Config
Targets
-
-
Target
fa03227e36cffbd1a537d8957c86fca3_JaffaCakes118
-
Size
60KB
-
MD5
fa03227e36cffbd1a537d8957c86fca3
-
SHA1
8deca4b5a9f45a62f11b38e1d9ca7868f6035f39
-
SHA256
d5f53c02ca5eb5039e524237fe1366697b1d7dda3b8e11718ae0122d16339be3
-
SHA512
bcb77e0460ac49d198c3721df9e5230505950c3ac91314ae0943977534965a68f865c9fd432b8ada8900e182bec67428f658b3bc7a92e83a030e21c4eac31583
-
SSDEEP
768:T3UpCIyM8x5IPbRU5U6NXUBndTCDhNMRqEnUmtF1e7Ebw1o+goU2oz:T3jDMCqui2WndTmhNMr3tF1Dw1o+go/
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2