General
-
Target
296e2ba5d626af49c2d8c046c59e62e7_JaffaCakes118
-
Size
142KB
-
Sample
240329-w1l8esfc95
-
MD5
296e2ba5d626af49c2d8c046c59e62e7
-
SHA1
4de28ca7849c0bc8c4d829e9394bbd78494b66f6
-
SHA256
b1a379c0237b8accc29ffa400ce125868e6438bbc335092479e07f9b2cf775a4
-
SHA512
b377c44fd55705e0c6a16f58e80d48eff421b4f83d04e1de0586a21584c93d77f0626e5cb82ecce711a723ff4a6677f9166cdd82a3fd3c529c3c80698a569234
-
SSDEEP
3072:a0XG3vfZ32F0j9KQcJJ78IrDlq2RzFq247DCLTzltNSFN9b23y0PEOmuHw794rKM:aeovxmaj9KQcJJ78IrDlq2RzFq247DCo
Malware Config
Targets
-
-
Target
296e2ba5d626af49c2d8c046c59e62e7_JaffaCakes118
-
Size
142KB
-
MD5
296e2ba5d626af49c2d8c046c59e62e7
-
SHA1
4de28ca7849c0bc8c4d829e9394bbd78494b66f6
-
SHA256
b1a379c0237b8accc29ffa400ce125868e6438bbc335092479e07f9b2cf775a4
-
SHA512
b377c44fd55705e0c6a16f58e80d48eff421b4f83d04e1de0586a21584c93d77f0626e5cb82ecce711a723ff4a6677f9166cdd82a3fd3c529c3c80698a569234
-
SSDEEP
3072:a0XG3vfZ32F0j9KQcJJ78IrDlq2RzFq247DCLTzltNSFN9b23y0PEOmuHw794rKM:aeovxmaj9KQcJJ78IrDlq2RzFq247DCo
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-