General
-
Target
039a7eca982fa4dbde759fbfda90a975_JaffaCakes118
-
Size
184KB
-
Sample
240930-3dptcstgng
-
MD5
039a7eca982fa4dbde759fbfda90a975
-
SHA1
5ea281ecac4b7b181417bbe027b60f919440129e
-
SHA256
ca1a0a5d18ea9e1f015a83476ef6e939465d00648c44e005356168929aa1750c
-
SHA512
9d3dcabd343c16e1e41eafa95f12febccc40a66c0e9ab4296c614e2e4c4851b057161668b5179cece78cefd9ee608b864ade05534293d28844a5f88c39f10a17
-
SSDEEP
3072:v1R2DZ3lTBZRtWQSB8feK/fObT/bGi0M16LQGVfBwbMHjRAS38:UZ3lHzWxBPK/fObT/bGi0MUdVfBwbMH0
Malware Config
Targets
-
-
Target
039a7eca982fa4dbde759fbfda90a975_JaffaCakes118
-
Size
184KB
-
MD5
039a7eca982fa4dbde759fbfda90a975
-
SHA1
5ea281ecac4b7b181417bbe027b60f919440129e
-
SHA256
ca1a0a5d18ea9e1f015a83476ef6e939465d00648c44e005356168929aa1750c
-
SHA512
9d3dcabd343c16e1e41eafa95f12febccc40a66c0e9ab4296c614e2e4c4851b057161668b5179cece78cefd9ee608b864ade05534293d28844a5f88c39f10a17
-
SSDEEP
3072:v1R2DZ3lTBZRtWQSB8feK/fObT/bGi0M16LQGVfBwbMHjRAS38:UZ3lHzWxBPK/fObT/bGi0MUdVfBwbMH0
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2