General
-
Target
2d8f724cd2121797b8d946d777c45cdd_JaffaCakes118
-
Size
60KB
-
Sample
241009-jq88zszgpg
-
MD5
2d8f724cd2121797b8d946d777c45cdd
-
SHA1
13980133389661a7406516b9b21a9f9bd3a4e14f
-
SHA256
c9da30fe56fbd1179f4d1139830fa9a1fdf046b9a176964253d26f7abbb06169
-
SHA512
fcd74aeba82902647c662cefaa3ae9a62f245fde9726be9ad16f8bfafae0b3d5b735a378642c6d315905b325496faaa11aaf564a34640fa62bb7ac8a54e02441
-
SSDEEP
768:xj9QSoeh5LU0dcxmJUMncu/VLHpFIkid+JFIkNcr9fLkWEUYn6sNpcspj6W8Lx4b:xj9QRe/vgM/AQmSNFONMlszAjUkx1D
Malware Config
Targets
-
-
Target
2d8f724cd2121797b8d946d777c45cdd_JaffaCakes118
-
Size
60KB
-
MD5
2d8f724cd2121797b8d946d777c45cdd
-
SHA1
13980133389661a7406516b9b21a9f9bd3a4e14f
-
SHA256
c9da30fe56fbd1179f4d1139830fa9a1fdf046b9a176964253d26f7abbb06169
-
SHA512
fcd74aeba82902647c662cefaa3ae9a62f245fde9726be9ad16f8bfafae0b3d5b735a378642c6d315905b325496faaa11aaf564a34640fa62bb7ac8a54e02441
-
SSDEEP
768:xj9QSoeh5LU0dcxmJUMncu/VLHpFIkid+JFIkNcr9fLkWEUYn6sNpcspj6W8Lx4b:xj9QRe/vgM/AQmSNFONMlszAjUkx1D
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2