General
-
Target
fce6cd8e78571af10d15c0a9bfd2bd37_JaffaCakes118
-
Size
728KB
-
Sample
240928-w7wqfashjf
-
MD5
fce6cd8e78571af10d15c0a9bfd2bd37
-
SHA1
990cd3fc5c94ddc6b417c11c2fed0f32994613ef
-
SHA256
e153d2ea5da7aafb640d9643e8bc4428e3b2196bf73d82d51f9d719a9841a078
-
SHA512
b41c26fe36c3e7af5898631c58a51646a8ab35dc43186ab39fa94c4c9afaab57fc9018c06dc5ccd66aabe6d5501e0edde4b1fa446dc7382c82959af5ab91b7c6
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXk/meGDgGeItoEc9GspWZhASRXHYnrmG:lEc8H5fMLN2Kb7krGlFtov9GsqRXHYrF
Malware Config
Targets
-
-
Target
fce6cd8e78571af10d15c0a9bfd2bd37_JaffaCakes118
-
Size
728KB
-
MD5
fce6cd8e78571af10d15c0a9bfd2bd37
-
SHA1
990cd3fc5c94ddc6b417c11c2fed0f32994613ef
-
SHA256
e153d2ea5da7aafb640d9643e8bc4428e3b2196bf73d82d51f9d719a9841a078
-
SHA512
b41c26fe36c3e7af5898631c58a51646a8ab35dc43186ab39fa94c4c9afaab57fc9018c06dc5ccd66aabe6d5501e0edde4b1fa446dc7382c82959af5ab91b7c6
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXk/meGDgGeItoEc9GspWZhASRXHYnrmG:lEc8H5fMLN2Kb7krGlFtov9GsqRXHYrF
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1