General
-
Target
0799cde5ba478907ef3515e210bb24ec_JaffaCakes118
-
Size
96KB
-
Sample
241001-1ygmdasfkp
-
MD5
0799cde5ba478907ef3515e210bb24ec
-
SHA1
1d1368f569d3cee297754be89c92e5bba0a3a07f
-
SHA256
b35c3aa61e6e17d90106a6da7275108410d2b1aa4046d78eeae6d21a2e47d2fd
-
SHA512
dc8e93363098b64487876a44fefabe7039f66f75dedb7a2cbf97637fb684b2f764611f19356f7017fdfb238cd6a4e84445f9f7863d82b8a7042cfe3e1ab3efff
-
SSDEEP
1536:ZQET52Q9tyVQO8PWychdwjj3RJtEo/k9uznnynEkRld3EPPlijOebNIjP:eEgQefychUzRPEk5CRldlbCP
Malware Config
Targets
-
-
Target
0799cde5ba478907ef3515e210bb24ec_JaffaCakes118
-
Size
96KB
-
MD5
0799cde5ba478907ef3515e210bb24ec
-
SHA1
1d1368f569d3cee297754be89c92e5bba0a3a07f
-
SHA256
b35c3aa61e6e17d90106a6da7275108410d2b1aa4046d78eeae6d21a2e47d2fd
-
SHA512
dc8e93363098b64487876a44fefabe7039f66f75dedb7a2cbf97637fb684b2f764611f19356f7017fdfb238cd6a4e84445f9f7863d82b8a7042cfe3e1ab3efff
-
SSDEEP
1536:ZQET52Q9tyVQO8PWychdwjj3RJtEo/k9uznnynEkRld3EPPlijOebNIjP:eEgQefychUzRPEk5CRldlbCP
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2