General
-
Target
027f4d01a12387014199d6cb3ad9e9c2_JaffaCakes118
-
Size
136KB
-
Sample
240930-v442zaxcpk
-
MD5
027f4d01a12387014199d6cb3ad9e9c2
-
SHA1
2dfe37ef42ab3f363dd9eb9105752ba9535616ef
-
SHA256
f1664880ccd78bbf8a7be48e3f9b22c60dbf0450ad8e9e697b22eed19d49a2c1
-
SHA512
5ea216823bdcc55929400f555127024891b6fa44332b88b3d0d9ff6df33eac1675eecc1190d7dfdd86d1145bc41641da40ee6f8a805cba4b45e2871eeef7dfdc
-
SSDEEP
1536:gyahqRoH+BhRKRmH2GijPEUbaxnvdWkNqSP3PKh9pGw93mW9bcGwh+8hcXZDuS8a:9H6EUbaxv13wpUh2XZDutcHdVmn8+uo8
Malware Config
Targets
-
-
Target
027f4d01a12387014199d6cb3ad9e9c2_JaffaCakes118
-
Size
136KB
-
MD5
027f4d01a12387014199d6cb3ad9e9c2
-
SHA1
2dfe37ef42ab3f363dd9eb9105752ba9535616ef
-
SHA256
f1664880ccd78bbf8a7be48e3f9b22c60dbf0450ad8e9e697b22eed19d49a2c1
-
SHA512
5ea216823bdcc55929400f555127024891b6fa44332b88b3d0d9ff6df33eac1675eecc1190d7dfdd86d1145bc41641da40ee6f8a805cba4b45e2871eeef7dfdc
-
SSDEEP
1536:gyahqRoH+BhRKRmH2GijPEUbaxnvdWkNqSP3PKh9pGw93mW9bcGwh+8hcXZDuS8a:9H6EUbaxv13wpUh2XZDutcHdVmn8+uo8
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2