General
-
Target
5269381754aa997141245febf39fefa2_JaffaCakes118
-
Size
104KB
-
Sample
241017-r69hpa1hkc
-
MD5
5269381754aa997141245febf39fefa2
-
SHA1
610fb38a66fbd099ea98f3484071301792aea663
-
SHA256
e5f82000ffdec16ffdadde59985c5849f7d51aebddce9919d8a7007a268a9b5d
-
SHA512
52d8333099240106fd8acc4f348c40cff8eb2b96fdee2bada055fff37b1b8b8b77976569d9a0f7d0a3fb64bbac66591febee9149cf0975b0bfd5563a4af068e6
-
SSDEEP
1536:i7yCIbb/bAJ8xxp+pofZ71TDdxqh5c2+JTlD/5QOuqXRRRyRAR/RwRzyYWkMktgY:njw+5+pMI7cv776qL0oDi
Malware Config
Targets
-
-
Target
5269381754aa997141245febf39fefa2_JaffaCakes118
-
Size
104KB
-
MD5
5269381754aa997141245febf39fefa2
-
SHA1
610fb38a66fbd099ea98f3484071301792aea663
-
SHA256
e5f82000ffdec16ffdadde59985c5849f7d51aebddce9919d8a7007a268a9b5d
-
SHA512
52d8333099240106fd8acc4f348c40cff8eb2b96fdee2bada055fff37b1b8b8b77976569d9a0f7d0a3fb64bbac66591febee9149cf0975b0bfd5563a4af068e6
-
SSDEEP
1536:i7yCIbb/bAJ8xxp+pofZ71TDdxqh5c2+JTlD/5QOuqXRRRyRAR/RwRzyYWkMktgY:njw+5+pMI7cv776qL0oDi
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2