General

  • Target

    7fd06eb966473d2b6b43f709a57c3845_JaffaCakes118

  • Size

    40KB

  • Sample

    241030-s9gshsvqcv

  • MD5

    7fd06eb966473d2b6b43f709a57c3845

  • SHA1

    65696b6f36d76c196a916c6e09945c9009128aae

  • SHA256

    b06ce2445ee3ad426a2410f36e3466ade3f4d54fb2af10ed8d26eb7f69cee986

  • SHA512

    d4617daf057aba9e33b14ae181fdd7d38907b99ddc4585ea70ee3ae467e6f031bdbcc5e24cb6ae2764eeece8645facd42703b82d534121213ae42381d12ebe67

  • SSDEEP

    768:ijj4kmVqDhWy8GL90LNUUi4sanWYIFpXuec35TzJ2LsNNkm/VbHm:ij6V8WxGLUNUUSKWYIFpX6FJKmZm

Malware Config

Targets

    • Target

      7fd06eb966473d2b6b43f709a57c3845_JaffaCakes118

    • Size

      40KB

    • MD5

      7fd06eb966473d2b6b43f709a57c3845

    • SHA1

      65696b6f36d76c196a916c6e09945c9009128aae

    • SHA256

      b06ce2445ee3ad426a2410f36e3466ade3f4d54fb2af10ed8d26eb7f69cee986

    • SHA512

      d4617daf057aba9e33b14ae181fdd7d38907b99ddc4585ea70ee3ae467e6f031bdbcc5e24cb6ae2764eeece8645facd42703b82d534121213ae42381d12ebe67

    • SSDEEP

      768:ijj4kmVqDhWy8GL90LNUUi4sanWYIFpXuec35TzJ2LsNNkm/VbHm:ij6V8WxGLUNUUSKWYIFpX6FJKmZm

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks