General

  • Target

    fef16668eb58c0a0f9dca9be49915160_JaffaCakes118

  • Size

    137KB

  • Sample

    240929-t8as9a1hrp

  • MD5

    fef16668eb58c0a0f9dca9be49915160

  • SHA1

    1f1db4e5e57005db50e0c04e50bab4265e78f5c2

  • SHA256

    9a4f8fe33b6260eb3447587f2d442421a824a997faee25d98f9602c2380b6519

  • SHA512

    b0a2a0009e8e551a8f0447735201d7b14f5a61090878b3734dc6f3996eb4d8937511b58376786fb07c4ec047d42d233a1519a6731917fdc3ef041807eb8eb13f

  • SSDEEP

    1536:eqcmDHE9l2jV5onOelkT57Y0S73jQSlfYF8JiU29TrWF:MHcolp0kf1Y8iU2tWF

Score
8/10

Malware Config

Targets

    • Target

      fef16668eb58c0a0f9dca9be49915160_JaffaCakes118

    • Size

      137KB

    • MD5

      fef16668eb58c0a0f9dca9be49915160

    • SHA1

      1f1db4e5e57005db50e0c04e50bab4265e78f5c2

    • SHA256

      9a4f8fe33b6260eb3447587f2d442421a824a997faee25d98f9602c2380b6519

    • SHA512

      b0a2a0009e8e551a8f0447735201d7b14f5a61090878b3734dc6f3996eb4d8937511b58376786fb07c4ec047d42d233a1519a6731917fdc3ef041807eb8eb13f

    • SSDEEP

      1536:eqcmDHE9l2jV5onOelkT57Y0S73jQSlfYF8JiU29TrWF:MHcolp0kf1Y8iU2tWF

    Score
    8/10
    • Possible privilege escalation attempt

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Modifies file permissions

MITRE ATT&CK Enterprise v15

Tasks