General
-
Target
dd67bc52c4a358f3f9fe5f1e37e9a989_JaffaCakes118
-
Size
361KB
-
Sample
240406-g3vj9adb62
-
MD5
dd67bc52c4a358f3f9fe5f1e37e9a989
-
SHA1
48d29006637f5f371866c1410bd704e297b79a0b
-
SHA256
2b16c77f19b87c5d055e4c8a3eb28ecfd0f64c5ced106298e8602a6cdeaa011c
-
SHA512
2d1eded3db08cfd2fa1599b3976142e63ccfaf94858a7b53efb37b6fec8a17ada0888bdf3f46ce58e1a3cf359d8442c159ad93527e736375bc25c4ea07afdc9b
-
SSDEEP
6144:XE6F9p7dwH0xntFeWSp85nvfIuGIyeeLsoJhewqX7tNfVXVHQLIiu8c:X797dJxtFepsnvhy7R8wwZGEX8c
Static task
static1
Behavioral task
behavioral1
Sample
dd67bc52c4a358f3f9fe5f1e37e9a989_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
dd67bc52c4a358f3f9fe5f1e37e9a989_JaffaCakes118.exe
Resource
win10v2004-20240319-en
Malware Config
Extracted
gcleaner
gcl-gb.biz
45.9.20.13
Targets
-
-
Target
dd67bc52c4a358f3f9fe5f1e37e9a989_JaffaCakes118
-
Size
361KB
-
MD5
dd67bc52c4a358f3f9fe5f1e37e9a989
-
SHA1
48d29006637f5f371866c1410bd704e297b79a0b
-
SHA256
2b16c77f19b87c5d055e4c8a3eb28ecfd0f64c5ced106298e8602a6cdeaa011c
-
SHA512
2d1eded3db08cfd2fa1599b3976142e63ccfaf94858a7b53efb37b6fec8a17ada0888bdf3f46ce58e1a3cf359d8442c159ad93527e736375bc25c4ea07afdc9b
-
SSDEEP
6144:XE6F9p7dwH0xntFeWSp85nvfIuGIyeeLsoJhewqX7tNfVXVHQLIiu8c:X797dJxtFepsnvhy7R8wwZGEX8c
Score10/10-
OnlyLogger payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-