General

  • Target

    JaffaCakes118_1c672cf07523b9ce4f06c423aea035d9

  • Size

    551KB

  • Sample

    250704-vkt3nabm7x

  • MD5

    1c672cf07523b9ce4f06c423aea035d9

  • SHA1

    09a06ffa0b0da5343def728896acc437779b131c

  • SHA256

    b79e8df749f52ec495aac3152e535ef0101ebae2d45dbc3df6d3b3aa01f11670

  • SHA512

    27aeb1191a6a02561accb88077c951a289272c54b5d056869c68feb4b9b7ff75cbaf9862172d8ae83f28a369bfbd5f1951dbd45f869e0ba673edb75dd42a78c7

  • SSDEEP

    12288:h1OgLdaOOWctn+MEfOUgbJuMmFcouJqk4:h1OYdaOOtMOUgJHJJqk4

Malware Config

Targets

    • Target

      JaffaCakes118_1c672cf07523b9ce4f06c423aea035d9

    • Size

      551KB

    • MD5

      1c672cf07523b9ce4f06c423aea035d9

    • SHA1

      09a06ffa0b0da5343def728896acc437779b131c

    • SHA256

      b79e8df749f52ec495aac3152e535ef0101ebae2d45dbc3df6d3b3aa01f11670

    • SHA512

      27aeb1191a6a02561accb88077c951a289272c54b5d056869c68feb4b9b7ff75cbaf9862172d8ae83f28a369bfbd5f1951dbd45f869e0ba673edb75dd42a78c7

    • SSDEEP

      12288:h1OgLdaOOWctn+MEfOUgbJuMmFcouJqk4:h1OYdaOOtMOUgJHJJqk4

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v16

Tasks