General
-
Target
10ba52d1b4e651b86fb1299380cb4f39_JaffaCakes118
-
Size
40KB
-
Sample
241003-19p3wszdlr
-
MD5
10ba52d1b4e651b86fb1299380cb4f39
-
SHA1
9fa65fd5c1cea756b4a9d6e9fdc334994476df65
-
SHA256
bec2def0e1d0d7fd4a595edb750110f0729a8b6323ef66d14470c91d1f368682
-
SHA512
754d6afa7a500710248a03650cd880ba47f06b3493e9df28ee57ee33b063066c5bb1134f3f53af81f4b7a7cf96c37b36749eb394d75e6fe3c26fcf933ff86a4e
-
SSDEEP
768:5+mfIz1XiLT2LU6OpY9x0dHXOHk3CCecGH9C/vc:5IzuT2LU6IY9x6w4RCsvc
Malware Config
Targets
-
-
Target
10ba52d1b4e651b86fb1299380cb4f39_JaffaCakes118
-
Size
40KB
-
MD5
10ba52d1b4e651b86fb1299380cb4f39
-
SHA1
9fa65fd5c1cea756b4a9d6e9fdc334994476df65
-
SHA256
bec2def0e1d0d7fd4a595edb750110f0729a8b6323ef66d14470c91d1f368682
-
SHA512
754d6afa7a500710248a03650cd880ba47f06b3493e9df28ee57ee33b063066c5bb1134f3f53af81f4b7a7cf96c37b36749eb394d75e6fe3c26fcf933ff86a4e
-
SSDEEP
768:5+mfIz1XiLT2LU6OpY9x0dHXOHk3CCecGH9C/vc:5IzuT2LU6IY9x6w4RCsvc
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2