General
-
Target
06332c76bab3c4b5b15158f41f92b3b8_JaffaCakes118
-
Size
2.6MB
-
Sample
240428-193nzsah81
-
MD5
06332c76bab3c4b5b15158f41f92b3b8
-
SHA1
8d837c4126ee98e94c5664d4f17bfe69389da8a5
-
SHA256
85f7a009f0f9e0d9bf057edc24bf584eb08349cec1818588d3a61106dbd2ab99
-
SHA512
846451df9130c85168e4e0d057a92b74bd025e77536734ce828d1a3ee6d68b3f488ea2c318eccb32a917d47b5157d155e229ea8a238bf495017a59f545614a0f
-
SSDEEP
49152:Pmxak0hQbAzDlk5G/xYmBvclEJZPIZwjnHTow5OiW8CtQw8j+DdT9jOotbgJSr3n:+k5GbA9hv8EJdboH3mml6iqN
Static task
static1
Behavioral task
behavioral1
Sample
06332c76bab3c4b5b15158f41f92b3b8_JaffaCakes118.exe
Resource
win7-20240419-en
Malware Config
Targets
-
-
Target
06332c76bab3c4b5b15158f41f92b3b8_JaffaCakes118
-
Size
2.6MB
-
MD5
06332c76bab3c4b5b15158f41f92b3b8
-
SHA1
8d837c4126ee98e94c5664d4f17bfe69389da8a5
-
SHA256
85f7a009f0f9e0d9bf057edc24bf584eb08349cec1818588d3a61106dbd2ab99
-
SHA512
846451df9130c85168e4e0d057a92b74bd025e77536734ce828d1a3ee6d68b3f488ea2c318eccb32a917d47b5157d155e229ea8a238bf495017a59f545614a0f
-
SSDEEP
49152:Pmxak0hQbAzDlk5G/xYmBvclEJZPIZwjnHTow5OiW8CtQw8j+DdT9jOotbgJSr3n:+k5GbA9hv8EJdboH3mml6iqN
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-