General
-
Target
39783f7db716c4af83d8ea5d694a55ff_JaffaCakes118
-
Size
320KB
-
Sample
241012-l9ql4azdpm
-
MD5
39783f7db716c4af83d8ea5d694a55ff
-
SHA1
3e946553e6dc811c804fa17aea7993004cf4aa3b
-
SHA256
dd3a5822ea7b41f2bb5c9e218c862e7a432698f76fd585b419faedb40313eeb5
-
SHA512
9ce3658c16f360a9cc7d93a92fed421b8c5a151d958f53f9ddffc87560b74f9b46039f7ea7cd996d56fe781ca1d6acf81a23a0d2a8c840a566985e0ef8bb05b1
-
SSDEEP
6144:cY7Dm56n5FAiaxnHqjXQMiRkNIyfoG22FyxgjjpMio0OpBWGPUba6fw:rXt5CiaZqELWbo8kxgjqWGPUbah
Malware Config
Targets
-
-
Target
39783f7db716c4af83d8ea5d694a55ff_JaffaCakes118
-
Size
320KB
-
MD5
39783f7db716c4af83d8ea5d694a55ff
-
SHA1
3e946553e6dc811c804fa17aea7993004cf4aa3b
-
SHA256
dd3a5822ea7b41f2bb5c9e218c862e7a432698f76fd585b419faedb40313eeb5
-
SHA512
9ce3658c16f360a9cc7d93a92fed421b8c5a151d958f53f9ddffc87560b74f9b46039f7ea7cd996d56fe781ca1d6acf81a23a0d2a8c840a566985e0ef8bb05b1
-
SSDEEP
6144:cY7Dm56n5FAiaxnHqjXQMiRkNIyfoG22FyxgjjpMio0OpBWGPUba6fw:rXt5CiaZqELWbo8kxgjqWGPUbah
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Checks for any installed AV software in registry
-
Suspicious use of SetThreadContext
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1