General

  • Target

    083cb967d95abd402273e45c28b92c65_JaffaCakes118

  • Size

    152KB

  • Sample

    241002-br5ceszfjm

  • MD5

    083cb967d95abd402273e45c28b92c65

  • SHA1

    278947aa0a64d3996cb612d924e31b4ca59256a8

  • SHA256

    97d1ee42ce4b8cc3d8ae43b358f320dc98295c7e40bc4a41c9ccd9eb103395eb

  • SHA512

    57f6aa00ecc1405e88d6b6d6b407f24c0e2613c958e32da29f91230c26639c85fa4e5c617398a5d1578f385ee4dfc75242cb8282e728e6fc09179c2fb6b5362d

  • SSDEEP

    1536:XYFco/Q8C33+pG9xf7gocsJjC3IBt0S1dHKMaNti2//gUEb3mnXzSp:IFfRC33nf7gocsJjCkt0S1dH9qW2mp

Malware Config

Targets

    • Target

      083cb967d95abd402273e45c28b92c65_JaffaCakes118

    • Size

      152KB

    • MD5

      083cb967d95abd402273e45c28b92c65

    • SHA1

      278947aa0a64d3996cb612d924e31b4ca59256a8

    • SHA256

      97d1ee42ce4b8cc3d8ae43b358f320dc98295c7e40bc4a41c9ccd9eb103395eb

    • SHA512

      57f6aa00ecc1405e88d6b6d6b407f24c0e2613c958e32da29f91230c26639c85fa4e5c617398a5d1578f385ee4dfc75242cb8282e728e6fc09179c2fb6b5362d

    • SSDEEP

      1536:XYFco/Q8C33+pG9xf7gocsJjC3IBt0S1dHKMaNti2//gUEb3mnXzSp:IFfRC33nf7gocsJjCkt0S1dH9qW2mp

    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks