General
-
Target
117bad7edc4a9d0974dc3186e9460157_JaffaCakes118
-
Size
116KB
-
Sample
241004-c4a5satfld
-
MD5
117bad7edc4a9d0974dc3186e9460157
-
SHA1
0ddb30335981ed86ece2c7858d5bd7b258475df7
-
SHA256
a26f4b7c0fbb7f72d53ad4ec4ea3af60ae015f2551e1a6a7e6ff8a2695d3b0b9
-
SHA512
2fc71c4d1c938e1a1db2cda1a290f2438abe7266c6c762a765c5fbc0478622875bdf0d005e4127e4972e725588d1f2372a5bf92081ddf22c481c693b0deca4ec
-
SSDEEP
1536:DJpxod++08Kw6KBOIW4Z8HO1Zwt0f4HeDUEdMOPy9sbgN3wo7JaS4:NpH+0fIr1ZNDUEdawQq
Malware Config
Targets
-
-
Target
117bad7edc4a9d0974dc3186e9460157_JaffaCakes118
-
Size
116KB
-
MD5
117bad7edc4a9d0974dc3186e9460157
-
SHA1
0ddb30335981ed86ece2c7858d5bd7b258475df7
-
SHA256
a26f4b7c0fbb7f72d53ad4ec4ea3af60ae015f2551e1a6a7e6ff8a2695d3b0b9
-
SHA512
2fc71c4d1c938e1a1db2cda1a290f2438abe7266c6c762a765c5fbc0478622875bdf0d005e4127e4972e725588d1f2372a5bf92081ddf22c481c693b0deca4ec
-
SSDEEP
1536:DJpxod++08Kw6KBOIW4Z8HO1Zwt0f4HeDUEdMOPy9sbgN3wo7JaS4:NpH+0fIr1ZNDUEdawQq
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2