General
-
Target
04fac6df618b58221991b30c3413716d_JaffaCakes118
-
Size
125KB
-
Sample
241001-j3cqjsyhkp
-
MD5
04fac6df618b58221991b30c3413716d
-
SHA1
e68e2a6d4bd5287fe8f041b6937305068a044f02
-
SHA256
f5d3fbb43c093db633b39a6198dbe44685eea757c4cc0a70de2dfcbd009be492
-
SHA512
44b722902e72dd5752e438e1cca5aeab333912ae2d2206e1b32e17589ecd25b027ca2bb49de691b041c79d7bd6ce892e0f5ef23947a0c19950eefc00e0efe02d
-
SSDEEP
3072:MXYpLDuLE2goAIl2EwrLSm5WLyD1v6jVAfunNg4K7QmcY+MZGQ:zpLDuLE2gRGoXr5Gyhv6jVAfKglLZG
Malware Config
Targets
-
-
Target
04fac6df618b58221991b30c3413716d_JaffaCakes118
-
Size
125KB
-
MD5
04fac6df618b58221991b30c3413716d
-
SHA1
e68e2a6d4bd5287fe8f041b6937305068a044f02
-
SHA256
f5d3fbb43c093db633b39a6198dbe44685eea757c4cc0a70de2dfcbd009be492
-
SHA512
44b722902e72dd5752e438e1cca5aeab333912ae2d2206e1b32e17589ecd25b027ca2bb49de691b041c79d7bd6ce892e0f5ef23947a0c19950eefc00e0efe02d
-
SSDEEP
3072:MXYpLDuLE2goAIl2EwrLSm5WLyD1v6jVAfunNg4K7QmcY+MZGQ:zpLDuLE2gRGoXr5Gyhv6jVAfKglLZG
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2