General
-
Target
6902bbf6691e2ce016859066f9959a7f_JaffaCakes118
-
Size
2.1MB
-
Sample
240522-3jlnwsdc5z
-
MD5
6902bbf6691e2ce016859066f9959a7f
-
SHA1
2aaa79cb56458eb8d6db867fdb34fe8535b995db
-
SHA256
0fb87ea5c45560676f963358531e27d8f368c7a7f4de66d24b93964c6a46c179
-
SHA512
06ae9b01f79ecb7cba3dc88a5b465fa123ff967c75721832308523fcd8aa3eeae8db090cff31493c27c2f6c60a53b5777d4dda251d24f5f2464f103d30da0960
-
SSDEEP
49152:yiqXjFPE6KQaqz5HgrqhPLKqXZj8wTbDyhsotbgJSg79g3Ze7:yzzFM7q1Hg2hP2o3o
Malware Config
Targets
-
-
Target
6902bbf6691e2ce016859066f9959a7f_JaffaCakes118
-
Size
2.1MB
-
MD5
6902bbf6691e2ce016859066f9959a7f
-
SHA1
2aaa79cb56458eb8d6db867fdb34fe8535b995db
-
SHA256
0fb87ea5c45560676f963358531e27d8f368c7a7f4de66d24b93964c6a46c179
-
SHA512
06ae9b01f79ecb7cba3dc88a5b465fa123ff967c75721832308523fcd8aa3eeae8db090cff31493c27c2f6c60a53b5777d4dda251d24f5f2464f103d30da0960
-
SSDEEP
49152:yiqXjFPE6KQaqz5HgrqhPLKqXZj8wTbDyhsotbgJSg79g3Ze7:yzzFM7q1Hg2hP2o3o
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-