General
-
Target
0e005a2c54f68ec50c7517d2f817c86a_JaffaCakes118
-
Size
204KB
-
Sample
241003-fgqthaygrc
-
MD5
0e005a2c54f68ec50c7517d2f817c86a
-
SHA1
d6c1e97d1fb528ded477eaea4338b85baf43503e
-
SHA256
dc164b6d4a6060b31dae0d0fa61e338cd72ea6081a7b1989246c69515847f674
-
SHA512
d341766c3842ae822775a29e6033b6f19283f44e63c1f5cbd2a44719b746a9971b0752f44c887d562addaa60b8cdf71d389df799a42d2a4d633dd5051e0e69a3
-
SSDEEP
3072:3KqiZBXj3pZgjxp8HRfW+Ida220gN4JsBi40BuWNVYrcLwcYieNRrhomiyTfXIK:3RWxDpZgdORfWTmiDBuhTIaxu+7qT
Malware Config
Targets
-
-
Target
0e005a2c54f68ec50c7517d2f817c86a_JaffaCakes118
-
Size
204KB
-
MD5
0e005a2c54f68ec50c7517d2f817c86a
-
SHA1
d6c1e97d1fb528ded477eaea4338b85baf43503e
-
SHA256
dc164b6d4a6060b31dae0d0fa61e338cd72ea6081a7b1989246c69515847f674
-
SHA512
d341766c3842ae822775a29e6033b6f19283f44e63c1f5cbd2a44719b746a9971b0752f44c887d562addaa60b8cdf71d389df799a42d2a4d633dd5051e0e69a3
-
SSDEEP
3072:3KqiZBXj3pZgjxp8HRfW+Ida220gN4JsBi40BuWNVYrcLwcYieNRrhomiyTfXIK:3RWxDpZgdORfWTmiDBuhTIaxu+7qT
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2