General
-
Target
fbe1e2cfb673c278e525fbfbae7489da_JaffaCakes118
-
Size
145KB
-
Sample
240420-emqj9afh94
-
MD5
fbe1e2cfb673c278e525fbfbae7489da
-
SHA1
2478247639200d26060476673738ca429d5650aa
-
SHA256
15d4d6518e3d3795f89b3e14c093256559f91a464a7784a5943adfaacdb3f753
-
SHA512
2f5fcf20d911c1fcdcfbce52187bf801ca664e66d9894e166fbb0af1a9769fb435c6345f57939c0ccafd7e34cffe8ff38cec088041a27e479ee1b456305755fb
-
SSDEEP
1536:YW+W8K2fJP7S8T6Qm2ZFHXt8SHzZN3sKJF/HxUSYoLLLlAYlcczFAHeDXK:Pr32c2DHXt8STbX3/RxlbzFAHem
Static task
static1
Behavioral task
behavioral1
Sample
fbe1e2cfb673c278e525fbfbae7489da_JaffaCakes118.exe
Resource
win7-20240215-en
Malware Config
Targets
-
-
Target
fbe1e2cfb673c278e525fbfbae7489da_JaffaCakes118
-
Size
145KB
-
MD5
fbe1e2cfb673c278e525fbfbae7489da
-
SHA1
2478247639200d26060476673738ca429d5650aa
-
SHA256
15d4d6518e3d3795f89b3e14c093256559f91a464a7784a5943adfaacdb3f753
-
SHA512
2f5fcf20d911c1fcdcfbce52187bf801ca664e66d9894e166fbb0af1a9769fb435c6345f57939c0ccafd7e34cffe8ff38cec088041a27e479ee1b456305755fb
-
SSDEEP
1536:YW+W8K2fJP7S8T6Qm2ZFHXt8SHzZN3sKJF/HxUSYoLLLlAYlcczFAHeDXK:Pr32c2DHXt8STbX3/RxlbzFAHem
-
Gh0st RAT payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-