General
-
Target
10c7f06d98413540c8e58b0f61dfca92_JaffaCakes118
-
Size
132KB
-
Sample
241003-2npexavakf
-
MD5
10c7f06d98413540c8e58b0f61dfca92
-
SHA1
8f44bac94e758502d2142bfb7ff8cd68ae8c5b04
-
SHA256
b0b40ae8d73bd380b80f3a3ec29c8e3e359e7170a20125f21c25508b03721343
-
SHA512
a27e4f1e8719a9c8e7af219577ed8d219d1a5556ea4827a3f27c6fb8935c14d7bbcde41bd8ad476e2452c791ba1bcc037d05dbe6645323474768885af796afe1
-
SSDEEP
1536:cwQmGzt9gWYdNcrRVjLcuD9hJx81hgChaOoycXI:y/vgW+NcjjLjhc+C4OHc
Malware Config
Targets
-
-
Target
10c7f06d98413540c8e58b0f61dfca92_JaffaCakes118
-
Size
132KB
-
MD5
10c7f06d98413540c8e58b0f61dfca92
-
SHA1
8f44bac94e758502d2142bfb7ff8cd68ae8c5b04
-
SHA256
b0b40ae8d73bd380b80f3a3ec29c8e3e359e7170a20125f21c25508b03721343
-
SHA512
a27e4f1e8719a9c8e7af219577ed8d219d1a5556ea4827a3f27c6fb8935c14d7bbcde41bd8ad476e2452c791ba1bcc037d05dbe6645323474768885af796afe1
-
SSDEEP
1536:cwQmGzt9gWYdNcrRVjLcuD9hJx81hgChaOoycXI:y/vgW+NcjjLjhc+C4OHc
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2