General
-
Target
9ef75beced580da7b227c819d55c8790_JaffaCakes118
-
Size
68KB
-
Sample
241126-bgcvesspdm
-
MD5
9ef75beced580da7b227c819d55c8790
-
SHA1
8d3149004681a6978b04bbbcb9e7ad36652266a2
-
SHA256
ce8ae3748ae527b84405f40857f0cb75b868d47bb940bd7d4ac1a20dfe9d55d0
-
SHA512
42dc44afff4f95604fd2dd4b508496d8b9fa69d0c6d16e0f0b71f0a687d578fbbead71176d859803e9830cab2e64ea6645607daf2708f166674945e6c5ba094e
-
SSDEEP
768:7cbliTdyr76Al+qOQSgFrhKo//WomvdfQXwYt1IEDIefZsK:gbIxo76AcqOK3qowgnt1d
Malware Config
Targets
-
-
Target
9ef75beced580da7b227c819d55c8790_JaffaCakes118
-
Size
68KB
-
MD5
9ef75beced580da7b227c819d55c8790
-
SHA1
8d3149004681a6978b04bbbcb9e7ad36652266a2
-
SHA256
ce8ae3748ae527b84405f40857f0cb75b868d47bb940bd7d4ac1a20dfe9d55d0
-
SHA512
42dc44afff4f95604fd2dd4b508496d8b9fa69d0c6d16e0f0b71f0a687d578fbbead71176d859803e9830cab2e64ea6645607daf2708f166674945e6c5ba094e
-
SSDEEP
768:7cbliTdyr76Al+qOQSgFrhKo//WomvdfQXwYt1IEDIefZsK:gbIxo76AcqOK3qowgnt1d
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2