General

  • Target

    7f454e7bb8c10b08f353a81ddfdf3d97_JaffaCakes118

  • Size

    581KB

  • Sample

    241030-p2dt4stdrf

  • MD5

    7f454e7bb8c10b08f353a81ddfdf3d97

  • SHA1

    241dd276faf75ebe10041a32ecc03d940a0243e7

  • SHA256

    dd5dbd9da0a4461fd03ff956cad907ffd185cbbdfe610bfe0599ebb14c202b7b

  • SHA512

    17c57b9895e330f610ddc5a53cdbfeb3f60e24cdec8c1e2b2e2ca16f45eff680ec3e53ebd6afc307d75af07d65c2761c4b85491e04535842b0a1e9b7fb2392c5

  • SSDEEP

    12288:uoMDtCi7NFlZnNqZ9xGrLpZ0ZHEqtgb0Ur:ufplNFgxG5eZngb0Q

Malware Config

Targets

    • Target

      7f454e7bb8c10b08f353a81ddfdf3d97_JaffaCakes118

    • Size

      581KB

    • MD5

      7f454e7bb8c10b08f353a81ddfdf3d97

    • SHA1

      241dd276faf75ebe10041a32ecc03d940a0243e7

    • SHA256

      dd5dbd9da0a4461fd03ff956cad907ffd185cbbdfe610bfe0599ebb14c202b7b

    • SHA512

      17c57b9895e330f610ddc5a53cdbfeb3f60e24cdec8c1e2b2e2ca16f45eff680ec3e53ebd6afc307d75af07d65c2761c4b85491e04535842b0a1e9b7fb2392c5

    • SSDEEP

      12288:uoMDtCi7NFlZnNqZ9xGrLpZ0ZHEqtgb0Ur:ufplNFgxG5eZngb0Q

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks