General
-
Target
fbe33427fa72c0b37aebbe5fbbb97667_JaffaCakes118
-
Size
337KB
-
Sample
240420-entnasgg8t
-
MD5
fbe33427fa72c0b37aebbe5fbbb97667
-
SHA1
acf65ae46ac2915563814df734ec9fe491c395e2
-
SHA256
4c33d8a76c5d0e4efb561bdd6f8e252a8246f17cb352cd0148dcaf39705b9338
-
SHA512
f3ade8cbf065b92b892089b77a5e1bcb0e7f36055fb8bf5886544a546690f71b6d14111d539341cb92778652cadb9438b2af8ce5dbe2f4e374fd8f72d1db3437
-
SSDEEP
6144:Dz7T5/9ezzYFrgAo14mFVoBw4mVH5dUTlsWimTkqto9hSWM:TB9WYFi15foqVZ2mmz
Static task
static1
Behavioral task
behavioral1
Sample
fbe33427fa72c0b37aebbe5fbbb97667_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
fbe33427fa72c0b37aebbe5fbbb97667_JaffaCakes118
-
Size
337KB
-
MD5
fbe33427fa72c0b37aebbe5fbbb97667
-
SHA1
acf65ae46ac2915563814df734ec9fe491c395e2
-
SHA256
4c33d8a76c5d0e4efb561bdd6f8e252a8246f17cb352cd0148dcaf39705b9338
-
SHA512
f3ade8cbf065b92b892089b77a5e1bcb0e7f36055fb8bf5886544a546690f71b6d14111d539341cb92778652cadb9438b2af8ce5dbe2f4e374fd8f72d1db3437
-
SSDEEP
6144:Dz7T5/9ezzYFrgAo14mFVoBw4mVH5dUTlsWimTkqto9hSWM:TB9WYFi15foqVZ2mmz
-
Detect ZGRat V1
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-