General
-
Target
1416f3830ffaae5b05f7ffad12b223a8_JaffaCakes118
-
Size
100KB
-
Sample
241004-twwj7aycnb
-
MD5
1416f3830ffaae5b05f7ffad12b223a8
-
SHA1
e770e399e665e6ae71d92c978ae3a6482b3831c9
-
SHA256
65eee7c949f39e82f9f3f71f954cf73f65d5a0d73096d55b72aaca41b1f5b1f2
-
SHA512
0f19bfb8f19d6739c827f7851bf8f93275ae43fa06f6dc78c4fb64c174abd6222f196d6027213feaa6f18518c611bcaa3cfc4d16a05f78f7ed6a8b420bcdf21b
-
SSDEEP
1536:2U/8iAuismywsxLw0wF9MGM9K/oKtNgCMbA1bL3N+NM5UfaNIjnZox:lx/KLOM5pCnGx
Malware Config
Targets
-
-
Target
1416f3830ffaae5b05f7ffad12b223a8_JaffaCakes118
-
Size
100KB
-
MD5
1416f3830ffaae5b05f7ffad12b223a8
-
SHA1
e770e399e665e6ae71d92c978ae3a6482b3831c9
-
SHA256
65eee7c949f39e82f9f3f71f954cf73f65d5a0d73096d55b72aaca41b1f5b1f2
-
SHA512
0f19bfb8f19d6739c827f7851bf8f93275ae43fa06f6dc78c4fb64c174abd6222f196d6027213feaa6f18518c611bcaa3cfc4d16a05f78f7ed6a8b420bcdf21b
-
SSDEEP
1536:2U/8iAuismywsxLw0wF9MGM9K/oKtNgCMbA1bL3N+NM5UfaNIjnZox:lx/KLOM5pCnGx
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2