General
-
Target
07ba150947fe2b45f98e116bd763f487_JaffaCakes118
-
Size
284KB
-
Sample
241001-2n46cstgnq
-
MD5
07ba150947fe2b45f98e116bd763f487
-
SHA1
e72d1a5aeaa9e3e4b098eed053ee84f746525475
-
SHA256
fc05edb775cb0df2d16d651151ff8613273d3917716870f4168ca6887424bfeb
-
SHA512
353ff671fc5eac5fdad130a3b3a8140c6f79bcbde4b610d5d0c5eb6c92a4064c422f9781c7bbf6d0a60e039682a8d78f1922fee81050e517e9b4bde707926f2b
-
SSDEEP
3072:RczAyJAyXoFpJYRz7zvzffz5zRz7zazozoz/zhzbzDzIzkzdzZzoz4z1zHzb:2zAyJAyXoFpJY1
Malware Config
Targets
-
-
Target
07ba150947fe2b45f98e116bd763f487_JaffaCakes118
-
Size
284KB
-
MD5
07ba150947fe2b45f98e116bd763f487
-
SHA1
e72d1a5aeaa9e3e4b098eed053ee84f746525475
-
SHA256
fc05edb775cb0df2d16d651151ff8613273d3917716870f4168ca6887424bfeb
-
SHA512
353ff671fc5eac5fdad130a3b3a8140c6f79bcbde4b610d5d0c5eb6c92a4064c422f9781c7bbf6d0a60e039682a8d78f1922fee81050e517e9b4bde707926f2b
-
SSDEEP
3072:RczAyJAyXoFpJYRz7zvzffz5zRz7zazozoz/zhzbzDzIzkzdzZzoz4z1zHzb:2zAyJAyXoFpJY1
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2