General
-
Target
083cb967d95abd402273e45c28b92c65_JaffaCakes118
-
Size
152KB
-
Sample
241002-br5ceszfjm
-
MD5
083cb967d95abd402273e45c28b92c65
-
SHA1
278947aa0a64d3996cb612d924e31b4ca59256a8
-
SHA256
97d1ee42ce4b8cc3d8ae43b358f320dc98295c7e40bc4a41c9ccd9eb103395eb
-
SHA512
57f6aa00ecc1405e88d6b6d6b407f24c0e2613c958e32da29f91230c26639c85fa4e5c617398a5d1578f385ee4dfc75242cb8282e728e6fc09179c2fb6b5362d
-
SSDEEP
1536:XYFco/Q8C33+pG9xf7gocsJjC3IBt0S1dHKMaNti2//gUEb3mnXzSp:IFfRC33nf7gocsJjCkt0S1dH9qW2mp
Static task
static1
Behavioral task
behavioral1
Sample
083cb967d95abd402273e45c28b92c65_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
083cb967d95abd402273e45c28b92c65_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
083cb967d95abd402273e45c28b92c65_JaffaCakes118
-
Size
152KB
-
MD5
083cb967d95abd402273e45c28b92c65
-
SHA1
278947aa0a64d3996cb612d924e31b4ca59256a8
-
SHA256
97d1ee42ce4b8cc3d8ae43b358f320dc98295c7e40bc4a41c9ccd9eb103395eb
-
SHA512
57f6aa00ecc1405e88d6b6d6b407f24c0e2613c958e32da29f91230c26639c85fa4e5c617398a5d1578f385ee4dfc75242cb8282e728e6fc09179c2fb6b5362d
-
SSDEEP
1536:XYFco/Q8C33+pG9xf7gocsJjC3IBt0S1dHKMaNti2//gUEb3mnXzSp:IFfRC33nf7gocsJjCkt0S1dH9qW2mp
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2