General
-
Target
f210b1525a90bd0fc69f06e621826d4a_JaffaCakes118
-
Size
208KB
-
Sample
240415-2bpvxaca4v
-
MD5
f210b1525a90bd0fc69f06e621826d4a
-
SHA1
dda4f8c804c71d7f8815efa8d34e7b1c0c0bc268
-
SHA256
b720529428f5f8d980e23b224f8ded6959fe6bda35f16d38df4ce894f41dc98f
-
SHA512
5a3458e85b9202124440f4c1100433954a2dd89a4c5aad3e65483becd618cbb94fd081784019e35d16fab6b3e21601c00e4b3303b506e5af65568447f277fa44
-
SSDEEP
6144:rorsFuuQmToYfPeffkxsthVIVO+b/RnmbT4PW9UmE7ldESgvSAOuPw:rluuQmToYfPeffkxsthVIVO+b/9mbkPN
Malware Config
Targets
-
-
Target
f210b1525a90bd0fc69f06e621826d4a_JaffaCakes118
-
Size
208KB
-
MD5
f210b1525a90bd0fc69f06e621826d4a
-
SHA1
dda4f8c804c71d7f8815efa8d34e7b1c0c0bc268
-
SHA256
b720529428f5f8d980e23b224f8ded6959fe6bda35f16d38df4ce894f41dc98f
-
SHA512
5a3458e85b9202124440f4c1100433954a2dd89a4c5aad3e65483becd618cbb94fd081784019e35d16fab6b3e21601c00e4b3303b506e5af65568447f277fa44
-
SSDEEP
6144:rorsFuuQmToYfPeffkxsthVIVO+b/RnmbT4PW9UmE7ldESgvSAOuPw:rluuQmToYfPeffkxsthVIVO+b/9mbkPN
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-