General

  • Target

    80ca24a0c50fa8435c1525eac1a8d7b2_JaffaCakes118

  • Size

    96KB

  • Sample

    241031-apcnyswmfn

  • MD5

    80ca24a0c50fa8435c1525eac1a8d7b2

  • SHA1

    f026b64839aee680ff62836c4ee5a98f957842ef

  • SHA256

    d675ca4479d9ce506f8074fc0ac6917e638fdfd444fd40250781f5d6e5bc081f

  • SHA512

    db10617ff1a405be8757de3ae30ed4aad83aab89c36e600f80fd03dd68fb1799b7c1a96b017a97d768ea252a8fc43175dd7f3834057c961b1d845f654b7dc5e9

  • SSDEEP

    1536:igYPhQXwIiPrrjThO+lUBrzCxry1ec7rUyj239au7538iJkZeyfT:FYP2XerzhOUxu/XUtauF8iJkZeK

Malware Config

Targets

    • Target

      80ca24a0c50fa8435c1525eac1a8d7b2_JaffaCakes118

    • Size

      96KB

    • MD5

      80ca24a0c50fa8435c1525eac1a8d7b2

    • SHA1

      f026b64839aee680ff62836c4ee5a98f957842ef

    • SHA256

      d675ca4479d9ce506f8074fc0ac6917e638fdfd444fd40250781f5d6e5bc081f

    • SHA512

      db10617ff1a405be8757de3ae30ed4aad83aab89c36e600f80fd03dd68fb1799b7c1a96b017a97d768ea252a8fc43175dd7f3834057c961b1d845f654b7dc5e9

    • SSDEEP

      1536:igYPhQXwIiPrrjThO+lUBrzCxry1ec7rUyj239au7538iJkZeyfT:FYP2XerzhOUxu/XUtauF8iJkZeK

    • Creates new service(s)

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks