General
-
Target
02bac853562618b7efbbdec3e3679e80_JaffaCakes118
-
Size
268KB
-
Sample
240930-w6rebszarj
-
MD5
02bac853562618b7efbbdec3e3679e80
-
SHA1
83d60548fd265aec59b6ae18f53e408da73326cf
-
SHA256
432af42e40b936419d6129c94fd64188d87fda8881069b63f81ca0b0200ee6c4
-
SHA512
f22ff97df7bce2784dfdf16f30f5ebeffefd25023340bf0a0efe37460af91f63daa8109585ec387b4ac984fa8b65f11d08aa7a429ecbddf872b5f3d7d68f8a43
-
SSDEEP
3072:f20PWsEErNzY/NJWdgo+Lk/BeHpHtOk0Ot3BWF8J+eobOlpzxR:4sjN0/NJWX1eHfKsWFE+ecOlp9
Malware Config
Targets
-
-
Target
02bac853562618b7efbbdec3e3679e80_JaffaCakes118
-
Size
268KB
-
MD5
02bac853562618b7efbbdec3e3679e80
-
SHA1
83d60548fd265aec59b6ae18f53e408da73326cf
-
SHA256
432af42e40b936419d6129c94fd64188d87fda8881069b63f81ca0b0200ee6c4
-
SHA512
f22ff97df7bce2784dfdf16f30f5ebeffefd25023340bf0a0efe37460af91f63daa8109585ec387b4ac984fa8b65f11d08aa7a429ecbddf872b5f3d7d68f8a43
-
SSDEEP
3072:f20PWsEErNzY/NJWdgo+Lk/BeHpHtOk0Ot3BWF8J+eobOlpzxR:4sjN0/NJWX1eHfKsWFE+ecOlp9
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2