General
-
Target
01513911f7550d4e3ac909e4a5afa8df_JaffaCakes118
-
Size
60KB
-
Sample
240930-pnjhfavfpm
-
MD5
01513911f7550d4e3ac909e4a5afa8df
-
SHA1
99115cfb8a6ec6fe9fbe179ab6f653b2dfdf66c9
-
SHA256
e815367002bc735643449b973a5225f73a9b647f4d3d3524109d86adee0cb3c0
-
SHA512
fac3bb571f6ad4ad7469c688d385be69bf809b8f149d49b07125b901a1bc36f6283c4770f192f82e6d0c3fb76369fb38243e241660bf5c903fd29c8c81247951
-
SSDEEP
768:k6KwD9xRIHgWTU6xUdPMXndo7sZUNMRrY20KtF1eNbw1o+JnJe:hBDL6mJdsndo6UNMyetF1qw1o+JnJe
Malware Config
Targets
-
-
Target
01513911f7550d4e3ac909e4a5afa8df_JaffaCakes118
-
Size
60KB
-
MD5
01513911f7550d4e3ac909e4a5afa8df
-
SHA1
99115cfb8a6ec6fe9fbe179ab6f653b2dfdf66c9
-
SHA256
e815367002bc735643449b973a5225f73a9b647f4d3d3524109d86adee0cb3c0
-
SHA512
fac3bb571f6ad4ad7469c688d385be69bf809b8f149d49b07125b901a1bc36f6283c4770f192f82e6d0c3fb76369fb38243e241660bf5c903fd29c8c81247951
-
SSDEEP
768:k6KwD9xRIHgWTU6xUdPMXndo7sZUNMRrY20KtF1eNbw1o+JnJe:hBDL6mJdsndo6UNMyetF1qw1o+JnJe
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2