General
-
Target
179a0ba9d329bc9849ce1306c821d38f_JaffaCakes118
-
Size
220KB
-
Sample
241006-lv22ksxfpq
-
MD5
179a0ba9d329bc9849ce1306c821d38f
-
SHA1
c0b0df4212b19b76eae64c6e9c4002c74e056aa9
-
SHA256
e2a7996fc0482f7537f4149c7bf15952edae754c595473f44b69db980d8b9f15
-
SHA512
2d53c35f4756acff6ed628b9bc013b1e9a7b7164ad0ab1b4dd02a0fd1771d9a713cb690f74e97191d77cf7c195e8c9351fffc912d45186d1d3ac6e1432d31e1b
-
SSDEEP
3072:FPsU8sqsNs3Ctl85gVzaSCzRTG2KAikGFyga7zJJ+WJv:lBJqqsCtWgzsmhUJJD
Malware Config
Targets
-
-
Target
179a0ba9d329bc9849ce1306c821d38f_JaffaCakes118
-
Size
220KB
-
MD5
179a0ba9d329bc9849ce1306c821d38f
-
SHA1
c0b0df4212b19b76eae64c6e9c4002c74e056aa9
-
SHA256
e2a7996fc0482f7537f4149c7bf15952edae754c595473f44b69db980d8b9f15
-
SHA512
2d53c35f4756acff6ed628b9bc013b1e9a7b7164ad0ab1b4dd02a0fd1771d9a713cb690f74e97191d77cf7c195e8c9351fffc912d45186d1d3ac6e1432d31e1b
-
SSDEEP
3072:FPsU8sqsNs3Ctl85gVzaSCzRTG2KAikGFyga7zJJ+WJv:lBJqqsCtWgzsmhUJJD
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2