General
-
Target
07d5333b94e8d937b47c8b5f35db2657_JaffaCakes118
-
Size
228KB
-
Sample
241001-3bbhyswamq
-
MD5
07d5333b94e8d937b47c8b5f35db2657
-
SHA1
5427b569bbb3f89c5431c2a1cf328f12fd85dba7
-
SHA256
b9f2e83873eb1a832ab119328ba1fa8bb8872a4cf07032a7863e5e9f209f2b07
-
SHA512
45d9bee8948e8791fd24bc790dc8ab7435c81adadb06e73c3f130a39d0136babc855d1aa0fa259d4bb7f4e0dca8f2ac8e4c7e8382343d2a9b53bb05af3e13173
-
SSDEEP
6144:fEA3PFKs7aaOKW8alhrEqxF6snji81RUinKGHgDDSa:fE6PhvENPH6Dn
Malware Config
Targets
-
-
Target
07d5333b94e8d937b47c8b5f35db2657_JaffaCakes118
-
Size
228KB
-
MD5
07d5333b94e8d937b47c8b5f35db2657
-
SHA1
5427b569bbb3f89c5431c2a1cf328f12fd85dba7
-
SHA256
b9f2e83873eb1a832ab119328ba1fa8bb8872a4cf07032a7863e5e9f209f2b07
-
SHA512
45d9bee8948e8791fd24bc790dc8ab7435c81adadb06e73c3f130a39d0136babc855d1aa0fa259d4bb7f4e0dca8f2ac8e4c7e8382343d2a9b53bb05af3e13173
-
SSDEEP
6144:fEA3PFKs7aaOKW8alhrEqxF6snji81RUinKGHgDDSa:fE6PhvENPH6Dn
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2