General
-
Target
156859d274545c043c3e7a8e201d9c99_JaffaCakes118
-
Size
16KB
-
Sample
240329-b5bbhaeb9s
-
MD5
156859d274545c043c3e7a8e201d9c99
-
SHA1
c5c66160478520b06eac1071ae2ce4852dc34075
-
SHA256
4518b0fbd154e48997f7893d76ac91556ec762268095863348235333801e7264
-
SHA512
58f404b0e630b34fe53ae022a7c369c2674777a3d840fb0ef52bcba71911a026dea9215374f5916cb49775cdbfbe40928b947521ba7ff542c058862ee0472689
-
SSDEEP
384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlh:hDXWipuE+K3/SSHgxmlh
Static task
static1
Behavioral task
behavioral1
Sample
156859d274545c043c3e7a8e201d9c99_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
156859d274545c043c3e7a8e201d9c99_JaffaCakes118.exe
Resource
win10v2004-20240319-en
Malware Config
Targets
-
-
Target
156859d274545c043c3e7a8e201d9c99_JaffaCakes118
-
Size
16KB
-
MD5
156859d274545c043c3e7a8e201d9c99
-
SHA1
c5c66160478520b06eac1071ae2ce4852dc34075
-
SHA256
4518b0fbd154e48997f7893d76ac91556ec762268095863348235333801e7264
-
SHA512
58f404b0e630b34fe53ae022a7c369c2674777a3d840fb0ef52bcba71911a026dea9215374f5916cb49775cdbfbe40928b947521ba7ff542c058862ee0472689
-
SSDEEP
384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlh:hDXWipuE+K3/SSHgxmlh
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-