General
-
Target
fe38e0a681ffb382eae5cdd6331a7113_JaffaCakes118
-
Size
17KB
-
Sample
240421-cy6phagg34
-
MD5
fe38e0a681ffb382eae5cdd6331a7113
-
SHA1
1ea6279f4c87863db2c594c80c252e01e0a95e86
-
SHA256
0bf9ae6c1c7c7a9b3a1769b2f274c076238513f994bb5c4f3e8da8bb74ff892b
-
SHA512
59f6c0bbed006c22b7e77ff3824a44672eb4d5a5b35a050ec32e5bf53190389c5376f368773d04f78cc3a95f850a76fe231c4ade0ebb3d4b31c435b49f41d8cf
-
SSDEEP
384:VFMKlq3YcmZO2Zp+Nye8pqrmub8TyztsDN:VWt3YoKK8o8TyJc
Malware Config
Targets
-
-
Target
fe38e0a681ffb382eae5cdd6331a7113_JaffaCakes118
-
Size
17KB
-
MD5
fe38e0a681ffb382eae5cdd6331a7113
-
SHA1
1ea6279f4c87863db2c594c80c252e01e0a95e86
-
SHA256
0bf9ae6c1c7c7a9b3a1769b2f274c076238513f994bb5c4f3e8da8bb74ff892b
-
SHA512
59f6c0bbed006c22b7e77ff3824a44672eb4d5a5b35a050ec32e5bf53190389c5376f368773d04f78cc3a95f850a76fe231c4ade0ebb3d4b31c435b49f41d8cf
-
SSDEEP
384:VFMKlq3YcmZO2Zp+Nye8pqrmub8TyztsDN:VWt3YoKK8o8TyJc
Score8/10-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-