General

  • Target

    JaffaCakes118_1b25b93f2e1725a382d40375f768439d

  • Size

    550KB

  • Sample

    250630-y95r8sgk3w

  • MD5

    1b25b93f2e1725a382d40375f768439d

  • SHA1

    cfbac9ef3a3b3d74456d1f2aae2e2ca2e01dbee5

  • SHA256

    0352e23da6f03189ee74fa4f90adb1d7db98925f167792687905b2b290cff546

  • SHA512

    0493a5184892997c7fd763d7134041ed2b78cc922015baa052380f47190930b008b956099c6c7145c4e3788be4441c4557629b91baf2384d5b057ccfbb925a0c

  • SSDEEP

    12288:h1OgLdaO9igbJuMmFcouJqkXWctn+MEfO3:h1OYdaO9igJHJJqkXtMO3

Malware Config

Targets

    • Target

      JaffaCakes118_1b25b93f2e1725a382d40375f768439d

    • Size

      550KB

    • MD5

      1b25b93f2e1725a382d40375f768439d

    • SHA1

      cfbac9ef3a3b3d74456d1f2aae2e2ca2e01dbee5

    • SHA256

      0352e23da6f03189ee74fa4f90adb1d7db98925f167792687905b2b290cff546

    • SHA512

      0493a5184892997c7fd763d7134041ed2b78cc922015baa052380f47190930b008b956099c6c7145c4e3788be4441c4557629b91baf2384d5b057ccfbb925a0c

    • SSDEEP

      12288:h1OgLdaO9igbJuMmFcouJqkXWctn+MEfO3:h1OYdaO9igJHJJqkXtMO3

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v16

Tasks