General
-
Target
61293e7f4c21c2c160bafb83128ee5a8_JaffaCakes118
-
Size
671KB
-
Sample
240520-2kre4aaa34
-
MD5
61293e7f4c21c2c160bafb83128ee5a8
-
SHA1
00333c6c852bf7684066eabecbaf918d7d223216
-
SHA256
23159377056a870981d8a9047bf2e51eab60c9d1a61e82816bba19d617cf2f66
-
SHA512
35a1ee34f9095860bc2c0b0362fe8b9e622b904c29ebf395980761fdc4a609e404248ecf7125a90b2b1744ff8a74877fc5436a22c43436b401f66b2364b38ec3
-
SSDEEP
12288:SZJ7G1zskWtP44444ItPZkTKpPwHb/dgusOlMLSTQNirbCfrL6y:qJ7Uzj4yUo7Fdle8WIbCL6y
Static task
static1
Behavioral task
behavioral1
Sample
61293e7f4c21c2c160bafb83128ee5a8_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
61293e7f4c21c2c160bafb83128ee5a8_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
61293e7f4c21c2c160bafb83128ee5a8_JaffaCakes118
-
Size
671KB
-
MD5
61293e7f4c21c2c160bafb83128ee5a8
-
SHA1
00333c6c852bf7684066eabecbaf918d7d223216
-
SHA256
23159377056a870981d8a9047bf2e51eab60c9d1a61e82816bba19d617cf2f66
-
SHA512
35a1ee34f9095860bc2c0b0362fe8b9e622b904c29ebf395980761fdc4a609e404248ecf7125a90b2b1744ff8a74877fc5436a22c43436b401f66b2364b38ec3
-
SSDEEP
12288:SZJ7G1zskWtP44444ItPZkTKpPwHb/dgusOlMLSTQNirbCfrL6y:qJ7Uzj4yUo7Fdle8WIbCL6y
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Drops desktop.ini file(s)
-