General
-
Target
be36fcf088c3c08812dcb4d9261ea8c1_JaffaCakes118
-
Size
268KB
-
Sample
241203-tsneeaylar
-
MD5
be36fcf088c3c08812dcb4d9261ea8c1
-
SHA1
95f442278f19a7dae2ebe1e49e22962ccd9b1317
-
SHA256
e0aeac3220edbc18b41eafdc107f7f384c68ac3d0cfe6bf2029056420fd0352e
-
SHA512
57a111548c632ff7ebd18b8daed54c958af023ee24d9ddad50da8544292c6be8a926fe80c7b31cb8a08e8cacd8f04c261fc258f29404d8e15cb5c4de1fa83d1c
-
SSDEEP
3072:EZy8FauSFEQLAg+Bj0vqMeFFoj1v2UAOnwoG+sWUS2LpFGMmPzde7+QT2GkdlJSu:EhXQMmPz
Malware Config
Targets
-
-
Target
be36fcf088c3c08812dcb4d9261ea8c1_JaffaCakes118
-
Size
268KB
-
MD5
be36fcf088c3c08812dcb4d9261ea8c1
-
SHA1
95f442278f19a7dae2ebe1e49e22962ccd9b1317
-
SHA256
e0aeac3220edbc18b41eafdc107f7f384c68ac3d0cfe6bf2029056420fd0352e
-
SHA512
57a111548c632ff7ebd18b8daed54c958af023ee24d9ddad50da8544292c6be8a926fe80c7b31cb8a08e8cacd8f04c261fc258f29404d8e15cb5c4de1fa83d1c
-
SSDEEP
3072:EZy8FauSFEQLAg+Bj0vqMeFFoj1v2UAOnwoG+sWUS2LpFGMmPzde7+QT2GkdlJSu:EhXQMmPz
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2