General
-
Target
f5844e4b493978d06de25951cf89449e_JaffaCakes118
-
Size
216KB
-
Sample
240417-l14scsbe58
-
MD5
f5844e4b493978d06de25951cf89449e
-
SHA1
f318972392e09c2bf3acfeebb65c72026caae156
-
SHA256
5c010c4e75a7b0ae04f1681b21f2d5051784ce1ac142690acf12e4868d65efa0
-
SHA512
fe6f1aa6382c5fa802a111e1a0ea998034065df3ff83a2b6e378db33cc04516dcf9129829ecf9203c70df5683fa7c7c886b90bb7a999e2f3bed907328992d96e
-
SSDEEP
6144:u5AcwAms9Y9/iABfSTjGYUBxEHBTPy5VvNxOi89MWJ7NG4/nRNDJO00/gc7:u+cwuUlBxEHBTSxOi81nRNDJO00l7
Malware Config
Targets
-
-
Target
f5844e4b493978d06de25951cf89449e_JaffaCakes118
-
Size
216KB
-
MD5
f5844e4b493978d06de25951cf89449e
-
SHA1
f318972392e09c2bf3acfeebb65c72026caae156
-
SHA256
5c010c4e75a7b0ae04f1681b21f2d5051784ce1ac142690acf12e4868d65efa0
-
SHA512
fe6f1aa6382c5fa802a111e1a0ea998034065df3ff83a2b6e378db33cc04516dcf9129829ecf9203c70df5683fa7c7c886b90bb7a999e2f3bed907328992d96e
-
SSDEEP
6144:u5AcwAms9Y9/iABfSTjGYUBxEHBTPy5VvNxOi89MWJ7NG4/nRNDJO00/gc7:u+cwuUlBxEHBTSxOi81nRNDJO00l7
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-