General

  • Target

    823e6f2e44f110467cfe1cb3cb4f2155_JaffaCakes118

  • Size

    581KB

  • Sample

    241031-h7tdes1raz

  • MD5

    823e6f2e44f110467cfe1cb3cb4f2155

  • SHA1

    1f732d20693ad9863a9f4c50fece767f6526a53d

  • SHA256

    419853ff5144ed8044ecae1b0e2c2d14c0dcee9d45f928cdddb3c0128dcd98be

  • SHA512

    40ea8c5702a5a2cd11a42d7a0fff9a70661733166570a6a7ce70185313e9bce3d35d4db6f3270bc9db8f7583916507a97712ac3f9cca190f8f1bf8499d9c4f81

  • SSDEEP

    12288:uoMDtCi7NFlZnNqZ9xGrLpZ0ZHEqtgb0UC:ufplNFgxG5eZngb0p

Malware Config

Targets

    • Target

      823e6f2e44f110467cfe1cb3cb4f2155_JaffaCakes118

    • Size

      581KB

    • MD5

      823e6f2e44f110467cfe1cb3cb4f2155

    • SHA1

      1f732d20693ad9863a9f4c50fece767f6526a53d

    • SHA256

      419853ff5144ed8044ecae1b0e2c2d14c0dcee9d45f928cdddb3c0128dcd98be

    • SHA512

      40ea8c5702a5a2cd11a42d7a0fff9a70661733166570a6a7ce70185313e9bce3d35d4db6f3270bc9db8f7583916507a97712ac3f9cca190f8f1bf8499d9c4f81

    • SSDEEP

      12288:uoMDtCi7NFlZnNqZ9xGrLpZ0ZHEqtgb0UC:ufplNFgxG5eZngb0p

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks