General
-
Target
658319ca3cbccf138da89af6a67d489e_JaffaCakes118
-
Size
683KB
-
Sample
240522-br7sjsfh39
-
MD5
658319ca3cbccf138da89af6a67d489e
-
SHA1
c08f9c2447289140c49df66d6e2898cb815f45ef
-
SHA256
0600a3643cbdb6ce5b2003f372d5649f8b911c7b3c2fb59b847522fe9774d3a1
-
SHA512
6318f1d98d4506a97ed29e8e2b420ab9fce33cafc2d6db4071a876cac660c3031e52e6af01a48b24568655fbe66b87468b14ac37380b738ad96c74bb35260717
-
SSDEEP
12288:apI1ozCEXgFQZ5O4GsLUfia4eiTxMovq6WuPCOlf5+V6v:yI1oz7gFGL/Uqbe6x5Ku6Op5+V6v
Static task
static1
Behavioral task
behavioral1
Sample
658319ca3cbccf138da89af6a67d489e_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
658319ca3cbccf138da89af6a67d489e_JaffaCakes118.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
658319ca3cbccf138da89af6a67d489e_JaffaCakes118
-
Size
683KB
-
MD5
658319ca3cbccf138da89af6a67d489e
-
SHA1
c08f9c2447289140c49df66d6e2898cb815f45ef
-
SHA256
0600a3643cbdb6ce5b2003f372d5649f8b911c7b3c2fb59b847522fe9774d3a1
-
SHA512
6318f1d98d4506a97ed29e8e2b420ab9fce33cafc2d6db4071a876cac660c3031e52e6af01a48b24568655fbe66b87468b14ac37380b738ad96c74bb35260717
-
SSDEEP
12288:apI1ozCEXgFQZ5O4GsLUfia4eiTxMovq6WuPCOlf5+V6v:yI1oz7gFGL/Uqbe6x5Ku6Op5+V6v
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Drops desktop.ini file(s)
-