General
-
Target
0fda62950a6def66ff9cd5f6bf0d373e_JaffaCakes118
-
Size
304KB
-
Sample
240328-zs8y1ahc25
-
MD5
0fda62950a6def66ff9cd5f6bf0d373e
-
SHA1
0d42ede86b4a970c73ab7c8b5e43b2a3a9092221
-
SHA256
f1cba3dadb1a6e49066b9e651612a0b46e13915809e74fdac3724fdb6d4f21c3
-
SHA512
ebd2e4a43402e653c1e65b876b77cab341b63ea53b05f50c965721b1af5f3d4bbcc03540db511c2b0dbc08e60627439cd63dd526cfda4be620ce3b66a19020e5
-
SSDEEP
3072:hPGOaEaAaTG0kZSmA2I8xqc+3EMop2aEaLFra+7pvPSvBm9:S4Ab0oEylaRS2
Malware Config
Targets
-
-
Target
0fda62950a6def66ff9cd5f6bf0d373e_JaffaCakes118
-
Size
304KB
-
MD5
0fda62950a6def66ff9cd5f6bf0d373e
-
SHA1
0d42ede86b4a970c73ab7c8b5e43b2a3a9092221
-
SHA256
f1cba3dadb1a6e49066b9e651612a0b46e13915809e74fdac3724fdb6d4f21c3
-
SHA512
ebd2e4a43402e653c1e65b876b77cab341b63ea53b05f50c965721b1af5f3d4bbcc03540db511c2b0dbc08e60627439cd63dd526cfda4be620ce3b66a19020e5
-
SSDEEP
3072:hPGOaEaAaTG0kZSmA2I8xqc+3EMop2aEaLFra+7pvPSvBm9:S4Ab0oEylaRS2
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-