General
-
Target
3857398a5f4a9977e95410e14d6c23eb_JaffaCakes118
-
Size
68KB
-
Sample
241012-ekzedasdja
-
MD5
3857398a5f4a9977e95410e14d6c23eb
-
SHA1
06dcc9371ec0a320d47ec5cb4f7bea5ec2d5260f
-
SHA256
1ddb0b38f938550f1ebeb6c9404c159dbe22756073e6288df87bd52b05f2c3ea
-
SHA512
94b407a796f484f053ca85b3a6f4fda7047c7967b126b4982aaf77beca0603a531ecf5d8fae36ae479ec40be471cc4b6451c5b3ec4e712d8ea65e76c26dbffe7
-
SSDEEP
768:ucSliTdWiAl+qOQSgFrhKo//WomvdfQXwYt1IEDIefZsK:lSIx5AcqOK3qowgnt1d
Malware Config
Targets
-
-
Target
3857398a5f4a9977e95410e14d6c23eb_JaffaCakes118
-
Size
68KB
-
MD5
3857398a5f4a9977e95410e14d6c23eb
-
SHA1
06dcc9371ec0a320d47ec5cb4f7bea5ec2d5260f
-
SHA256
1ddb0b38f938550f1ebeb6c9404c159dbe22756073e6288df87bd52b05f2c3ea
-
SHA512
94b407a796f484f053ca85b3a6f4fda7047c7967b126b4982aaf77beca0603a531ecf5d8fae36ae479ec40be471cc4b6451c5b3ec4e712d8ea65e76c26dbffe7
-
SSDEEP
768:ucSliTdWiAl+qOQSgFrhKo//WomvdfQXwYt1IEDIefZsK:lSIx5AcqOK3qowgnt1d
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2