General
-
Target
547121f09155ef0aab83ccb40da0228c_JaffaCakes118
-
Size
120KB
-
Sample
241018-anvhdaxgnl
-
MD5
547121f09155ef0aab83ccb40da0228c
-
SHA1
76caf7b8cc275b323a65d10e22f3e71994eb665b
-
SHA256
ff4ec494b553cd4c163fc85f37d2b334efd603b189b512334ce33ba541f83681
-
SHA512
3f4eafac52101814c14a5b8dfebe58813efa3f8054ef381b33536ff900ef765d9495d8a1ba41f239eecbc7bbdeb7f1dca7cbb3b8551d9783d9a5778d1fb99f86
-
SSDEEP
768:3UrVnDYoRnc/XOXVLW2qZ1RisVDaWGNMMMNMUF7//mk8KacrZxbjARZ+uc:k1kIcvwNWhZ1X7//mkjZxbURZ+u
Malware Config
Targets
-
-
Target
547121f09155ef0aab83ccb40da0228c_JaffaCakes118
-
Size
120KB
-
MD5
547121f09155ef0aab83ccb40da0228c
-
SHA1
76caf7b8cc275b323a65d10e22f3e71994eb665b
-
SHA256
ff4ec494b553cd4c163fc85f37d2b334efd603b189b512334ce33ba541f83681
-
SHA512
3f4eafac52101814c14a5b8dfebe58813efa3f8054ef381b33536ff900ef765d9495d8a1ba41f239eecbc7bbdeb7f1dca7cbb3b8551d9783d9a5778d1fb99f86
-
SSDEEP
768:3UrVnDYoRnc/XOXVLW2qZ1RisVDaWGNMMMNMUF7//mk8KacrZxbjARZ+uc:k1kIcvwNWhZ1X7//mkjZxbURZ+u
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2