General
-
Target
658b5d3b08863c5580c1d6cc8e949614_JaffaCakes118
-
Size
153KB
-
Sample
240522-b1brgagb78
-
MD5
658b5d3b08863c5580c1d6cc8e949614
-
SHA1
ced34635e3682175b4118df8fad8e1c47b51df6c
-
SHA256
8668ad831fa5e591bb1fec066d3f908524df2d4a6017c80077ae0a5961758382
-
SHA512
49431cf35b87d54b194d051ca5b580315d2da7ab0f1af35110f08906c8c541a6969c58354addee43ae1353a46d8974c30c254cdcb9a4b26f5f4c978b904ecfc2
-
SSDEEP
3072:vCQHshN8TmQ+fN6V+kr9d+TpvDbTDp1BsSytZCnSnh:NshzQ+4VX+TpHHiSytZV
Static task
static1
Behavioral task
behavioral1
Sample
658b5d3b08863c5580c1d6cc8e949614_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
658b5d3b08863c5580c1d6cc8e949614_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
658b5d3b08863c5580c1d6cc8e949614_JaffaCakes118
-
Size
153KB
-
MD5
658b5d3b08863c5580c1d6cc8e949614
-
SHA1
ced34635e3682175b4118df8fad8e1c47b51df6c
-
SHA256
8668ad831fa5e591bb1fec066d3f908524df2d4a6017c80077ae0a5961758382
-
SHA512
49431cf35b87d54b194d051ca5b580315d2da7ab0f1af35110f08906c8c541a6969c58354addee43ae1353a46d8974c30c254cdcb9a4b26f5f4c978b904ecfc2
-
SSDEEP
3072:vCQHshN8TmQ+fN6V+kr9d+TpvDbTDp1BsSytZCnSnh:NshzQ+4VX+TpHHiSytZV
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-