General
-
Target
10d522ed41579d6eb70e402a45b924b6_JaffaCakes118
-
Size
92KB
-
Sample
241003-2zc61sveme
-
MD5
10d522ed41579d6eb70e402a45b924b6
-
SHA1
f1a35bd3ac488325fe2f5deaccb8ec22c5f1be5c
-
SHA256
c87a3b7ceeda26ba9f934dc540e0c5b6463b117c408ea0f41b6f21de852848a9
-
SHA512
7089bb233c2a94919671b8362a040a5a45eb0b5f97a25bcb607e1c61bc464620aa6fcf3ba465d4101a7a3941a9cf056b3dc334ca87bcc4b10892fdda0e8181d4
-
SSDEEP
1536:52iHxLhPjjBkvWN/3HgGl+HJpwFJ0T72mocT:cur7/HMQFJ0T72mBT
Malware Config
Targets
-
-
Target
10d522ed41579d6eb70e402a45b924b6_JaffaCakes118
-
Size
92KB
-
MD5
10d522ed41579d6eb70e402a45b924b6
-
SHA1
f1a35bd3ac488325fe2f5deaccb8ec22c5f1be5c
-
SHA256
c87a3b7ceeda26ba9f934dc540e0c5b6463b117c408ea0f41b6f21de852848a9
-
SHA512
7089bb233c2a94919671b8362a040a5a45eb0b5f97a25bcb607e1c61bc464620aa6fcf3ba465d4101a7a3941a9cf056b3dc334ca87bcc4b10892fdda0e8181d4
-
SSDEEP
1536:52iHxLhPjjBkvWN/3HgGl+HJpwFJ0T72mocT:cur7/HMQFJ0T72mBT
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2