General
-
Target
13e33e625e7da4cefe22e0a811c1f856_JaffaCakes118
-
Size
100KB
-
Sample
241004-sqm57a1fjk
-
MD5
13e33e625e7da4cefe22e0a811c1f856
-
SHA1
45c964d8ce502b52e9561f69fe1c04f2e0e0bcef
-
SHA256
c1fcda9923284f7d5a77685467404c0a84404129306809c9a2ba98cbc39601d4
-
SHA512
c61af37c636b98a23b3b8fa7b14b2869720f3e59db7810b8e095afcc0d5648af24256204180a3cfa0f21014658a88c667594e0dc1035325cb16fc84a5f3198dc
-
SSDEEP
1536:qCi8iAuismywsgt4Lw0wF9MGM9K/oKtNgCMbA1bL3N+NM5UfONIjnZLg:6o4/KLOM5FCnBg
Malware Config
Targets
-
-
Target
13e33e625e7da4cefe22e0a811c1f856_JaffaCakes118
-
Size
100KB
-
MD5
13e33e625e7da4cefe22e0a811c1f856
-
SHA1
45c964d8ce502b52e9561f69fe1c04f2e0e0bcef
-
SHA256
c1fcda9923284f7d5a77685467404c0a84404129306809c9a2ba98cbc39601d4
-
SHA512
c61af37c636b98a23b3b8fa7b14b2869720f3e59db7810b8e095afcc0d5648af24256204180a3cfa0f21014658a88c667594e0dc1035325cb16fc84a5f3198dc
-
SSDEEP
1536:qCi8iAuismywsgt4Lw0wF9MGM9K/oKtNgCMbA1bL3N+NM5UfONIjnZLg:6o4/KLOM5FCnBg
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2