General
-
Target
fc2a38bf8bd82e7e76aac0f1172c9c6d_JaffaCakes118
-
Size
728KB
-
Sample
240928-m5y84sscqn
-
MD5
fc2a38bf8bd82e7e76aac0f1172c9c6d
-
SHA1
3939457b4299440b4df24379bd00ad8a824eed78
-
SHA256
fcaf1604c53e9ee4989eddcf544a68fd9875c6eb14da65ba5be6488f8f05ed3e
-
SHA512
a49ceeece0ec37faa9bd2cc4efb271fc4d1a723f4c95045fedc5a377b6e8c36ee29d217aad02f945e87ac58bbb96a15b2712ec20290a62e48c6ed6618ddaec52
-
SSDEEP
12288:z2/I3CMZC4u8YBbY5zgHWHmt8qMTmmcKDgGeItoEc9GspWZhASRXHYnrmk:z2QSmCrmgHCmKqMTkKlFtov9GsqRXHYr
Malware Config
Targets
-
-
Target
fc2a38bf8bd82e7e76aac0f1172c9c6d_JaffaCakes118
-
Size
728KB
-
MD5
fc2a38bf8bd82e7e76aac0f1172c9c6d
-
SHA1
3939457b4299440b4df24379bd00ad8a824eed78
-
SHA256
fcaf1604c53e9ee4989eddcf544a68fd9875c6eb14da65ba5be6488f8f05ed3e
-
SHA512
a49ceeece0ec37faa9bd2cc4efb271fc4d1a723f4c95045fedc5a377b6e8c36ee29d217aad02f945e87ac58bbb96a15b2712ec20290a62e48c6ed6618ddaec52
-
SSDEEP
12288:z2/I3CMZC4u8YBbY5zgHWHmt8qMTmmcKDgGeItoEc9GspWZhASRXHYnrmk:z2QSmCrmgHCmKqMTkKlFtov9GsqRXHYr
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1