General

  • Target

    8ee6322ffc477c53bbcd671b9a9f52e5_JaffaCakes118

  • Size

    41KB

  • Sample

    241104-dw5vvsvncm

  • MD5

    8ee6322ffc477c53bbcd671b9a9f52e5

  • SHA1

    8b1e1637a27c4a2e2616ac7f9fe6b985455d1fd9

  • SHA256

    c99cbf74113b07ea69563b408b60f1b849c491ae64bf8a63189834584170c580

  • SHA512

    f37135b535a0a8c426e883ec3168c1f41b78cde081a34a43ef2ffffcda483da674805e4e0c1ccb901bbff9a8f7e6d9b4fca6560ba67226bdc9c7e9b185a41df2

  • SSDEEP

    768:EM8rOH5odQn0ZN0wXkAx6tKlNzUuMF7Fv33z+eA/TYqTL24ZCFboKvi3W:EM8rOZodk4KBI4t+eA/TFTa4oFboK2W

Malware Config

Targets

    • Target

      8ee6322ffc477c53bbcd671b9a9f52e5_JaffaCakes118

    • Size

      41KB

    • MD5

      8ee6322ffc477c53bbcd671b9a9f52e5

    • SHA1

      8b1e1637a27c4a2e2616ac7f9fe6b985455d1fd9

    • SHA256

      c99cbf74113b07ea69563b408b60f1b849c491ae64bf8a63189834584170c580

    • SHA512

      f37135b535a0a8c426e883ec3168c1f41b78cde081a34a43ef2ffffcda483da674805e4e0c1ccb901bbff9a8f7e6d9b4fca6560ba67226bdc9c7e9b185a41df2

    • SSDEEP

      768:EM8rOH5odQn0ZN0wXkAx6tKlNzUuMF7Fv33z+eA/TYqTL24ZCFboKvi3W:EM8rOZodk4KBI4t+eA/TFTa4oFboK2W

    • Disables Task Manager via registry modification

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks