General
-
Target
694553aaa3a0c96ffa4892293a11a467_JaffaCakes118
-
Size
671KB
-
Sample
240523-bq8cpagc9y
-
MD5
694553aaa3a0c96ffa4892293a11a467
-
SHA1
3b41d88189b1c40b3ac786d1747b8715e4530922
-
SHA256
118a38d94d2b365e5fd01964854c6c1df5ea1a9c1a99c56941da6851428828fd
-
SHA512
c56c123b71977e89f29dc4fa93747edb90b93542af062b39532b4c9e39308dde74777e3d1fe683bc755247a841bbf8e8f7f40e70122c15c3e04f40e951e1a755
-
SSDEEP
12288:7d1WzJW0mYgmbxI4B+2pwP0RXvCt3CqXcu0KhTo0W9ChRyii9RqwH6W:B1WzUYgwJM2pwc+CqXcbKhUHCHi/jH6W
Static task
static1
Behavioral task
behavioral1
Sample
694553aaa3a0c96ffa4892293a11a467_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
694553aaa3a0c96ffa4892293a11a467_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
694553aaa3a0c96ffa4892293a11a467_JaffaCakes118
-
Size
671KB
-
MD5
694553aaa3a0c96ffa4892293a11a467
-
SHA1
3b41d88189b1c40b3ac786d1747b8715e4530922
-
SHA256
118a38d94d2b365e5fd01964854c6c1df5ea1a9c1a99c56941da6851428828fd
-
SHA512
c56c123b71977e89f29dc4fa93747edb90b93542af062b39532b4c9e39308dde74777e3d1fe683bc755247a841bbf8e8f7f40e70122c15c3e04f40e951e1a755
-
SSDEEP
12288:7d1WzJW0mYgmbxI4B+2pwP0RXvCt3CqXcu0KhTo0W9ChRyii9RqwH6W:B1WzUYgwJM2pwc+CqXcbKhUHCHi/jH6W
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Drops desktop.ini file(s)
-