General
-
Target
fb891dbc0c27fc136bbcb394f3aba9ba_JaffaCakes118
-
Size
120KB
-
Sample
240420-a2n8hsbg42
-
MD5
fb891dbc0c27fc136bbcb394f3aba9ba
-
SHA1
2da1d877c02ff0c0bb001e79112b1d5362889c5e
-
SHA256
46a0bf015909afedf84ffe58c32560fb19b3a720a5da235141e024cf07f86bef
-
SHA512
a7b9a1d0c34482fd1d5f1aea878298ee93546a6bef40cab9de4f62bd4039566b672082a48b07d12b1d65e938a4c459f436ab61cbf3a18515778033d04c21000e
-
SSDEEP
1536:6TvMEpALw+ttA+M0KuPe+cq2+VbM5dtO2XhXTOkIHzEHPjzVddnSlv3Q:6bykmA+Mp+P2Rs2R0HgHPjztSu
Malware Config
Targets
-
-
Target
fb891dbc0c27fc136bbcb394f3aba9ba_JaffaCakes118
-
Size
120KB
-
MD5
fb891dbc0c27fc136bbcb394f3aba9ba
-
SHA1
2da1d877c02ff0c0bb001e79112b1d5362889c5e
-
SHA256
46a0bf015909afedf84ffe58c32560fb19b3a720a5da235141e024cf07f86bef
-
SHA512
a7b9a1d0c34482fd1d5f1aea878298ee93546a6bef40cab9de4f62bd4039566b672082a48b07d12b1d65e938a4c459f436ab61cbf3a18515778033d04c21000e
-
SSDEEP
1536:6TvMEpALw+ttA+M0KuPe+cq2+VbM5dtO2XhXTOkIHzEHPjzVddnSlv3Q:6bykmA+Mp+P2Rs2R0HgHPjztSu
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-