General
-
Target
f6843eab27f2cdfb6f3c6bffac7d1b15_JaffaCakes118
-
Size
124KB
-
Sample
240417-ybkdmsdd4w
-
MD5
f6843eab27f2cdfb6f3c6bffac7d1b15
-
SHA1
d99ede6bbb003bbdcc835835e60a6b491c07d798
-
SHA256
6c2b934200e1f6537897e6b3a9d6bdd6371c31a8c66feb40eb64eda9ae284255
-
SHA512
cbbe3ccf0ae43d6c782f4e5132875c5c6d8aeeca6a5f9fce081eace3816ff00e3bf016b8d032a705143b62ea4c318e3613546e6256a1fe3f1f94c561e02264f9
-
SSDEEP
3072:KnHXMpxcGxFyhQ0bOqYJrC06GdkEfj+BXsJDBWsC+wQKH:uHmGY/o0JrV6GJ+5QFWQwj
Malware Config
Targets
-
-
Target
PHOTO-GOLAYA.exe
-
Size
239KB
-
MD5
3b6a823d2a38f447bfa16008f5c1486c
-
SHA1
a73038f71665e91fcbcbf2d7c34b7601dd88d805
-
SHA256
216e9686036f1f962f05526b583ed2b26f6666e8a3783e8f42883c4a09e8f86a
-
SHA512
a65c311f7c54db12c8cd738259df95afdf2dc01d19f21c61c3e3ef410c079df1af5475fe62cb73f01dab625b09b52b358315ac62899388dc6e9e6f101ed38f53
-
SSDEEP
3072:MBAp5XhKpN4eOyVTGfhEClj8jTk+0hYoO/MgjqEWBr+Cgw5CKH6:7bXE9OiTGfhEClq95/MghJJU6
Score8/10-
Drops file in Drivers directory
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-