General
-
Target
0d9715a0a25242bf2281d7dbbc696bb8_JaffaCakes118
-
Size
68KB
-
Sample
241003-dggvgsvdra
-
MD5
0d9715a0a25242bf2281d7dbbc696bb8
-
SHA1
42b22e44e7e85a3773343cb54a2e2310265941c7
-
SHA256
dbf4f55f41d79831c5df300f1e7f5b11292b7c7ef91163e3151e5c1c853c3e12
-
SHA512
0b0fc64a54f91d050c9185e39cb811723f024f016e814d25c3b9ba0ee7d002a2d6ff134beabc18d6ae12a026ce083ee8292ae997ba934fbc3d3d834ca39e02fb
-
SSDEEP
768:zcDliTdK2Al+qOQSgFrhKo//WomvdfQXwYt1IEDIefZsK:4DIx9AcqOK3qowgnt1d
Malware Config
Targets
-
-
Target
0d9715a0a25242bf2281d7dbbc696bb8_JaffaCakes118
-
Size
68KB
-
MD5
0d9715a0a25242bf2281d7dbbc696bb8
-
SHA1
42b22e44e7e85a3773343cb54a2e2310265941c7
-
SHA256
dbf4f55f41d79831c5df300f1e7f5b11292b7c7ef91163e3151e5c1c853c3e12
-
SHA512
0b0fc64a54f91d050c9185e39cb811723f024f016e814d25c3b9ba0ee7d002a2d6ff134beabc18d6ae12a026ce083ee8292ae997ba934fbc3d3d834ca39e02fb
-
SSDEEP
768:zcDliTdK2Al+qOQSgFrhKo//WomvdfQXwYt1IEDIefZsK:4DIx9AcqOK3qowgnt1d
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2