General
-
Target
083d750cb1b573068ea04806a3a50fa7_JaffaCakes118
-
Size
388KB
-
Sample
241002-bsdk4azfkp
-
MD5
083d750cb1b573068ea04806a3a50fa7
-
SHA1
37ab3414bd5b3b877856a85ef92dac095c0de829
-
SHA256
d464dcdc8403b2abcab3e15d29ff9de0ea1395859940a2d3087dc6cdbb5ce581
-
SHA512
6963df85ea1f97567a85a162ba5feab38f2bffe34d42b4fcaa22d3f6fe7ca924857943b40bf0d3f00e7fe02ca22b81c72f7e3e6b88c62b25d11402af1dc4be7d
-
SSDEEP
12288:3OnrUZN6tj99D4b8/EIsSp7ibSaZh0T4W:3orH9D4biSSp7ibx0T4
Malware Config
Targets
-
-
Target
083d750cb1b573068ea04806a3a50fa7_JaffaCakes118
-
Size
388KB
-
MD5
083d750cb1b573068ea04806a3a50fa7
-
SHA1
37ab3414bd5b3b877856a85ef92dac095c0de829
-
SHA256
d464dcdc8403b2abcab3e15d29ff9de0ea1395859940a2d3087dc6cdbb5ce581
-
SHA512
6963df85ea1f97567a85a162ba5feab38f2bffe34d42b4fcaa22d3f6fe7ca924857943b40bf0d3f00e7fe02ca22b81c72f7e3e6b88c62b25d11402af1dc4be7d
-
SSDEEP
12288:3OnrUZN6tj99D4b8/EIsSp7ibSaZh0T4W:3orH9D4biSSp7ibx0T4
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2