General
-
Target
6bcdbc1dccf2b7467ea0471dcf3030d1_JaffaCakes118
-
Size
1.1MB
-
Sample
240523-wpf72abc78
-
MD5
6bcdbc1dccf2b7467ea0471dcf3030d1
-
SHA1
527c50aa5f88292a9641f5d9ff227a1d71d5b175
-
SHA256
b79210f21130fa1eba38522bddbfc17b5e390cc0cc874805489324cc4f1d744e
-
SHA512
fb811300f93a3f7e815462d5c6e1240a4ffd5d0bdbdae7007344f730552b3031a0a3a4d673684de149f06eeb98ab5dbcc23a9eec1639db655682b09893c6dfab
-
SSDEEP
12288:HsM+aTA3c+FK1vrlVYBVignBtZnfVq4cz1i5pP9kPQy:MV4W8hqBYgnBLfVqx1Wjkf
Malware Config
Targets
-
-
Target
6bcdbc1dccf2b7467ea0471dcf3030d1_JaffaCakes118
-
Size
1.1MB
-
MD5
6bcdbc1dccf2b7467ea0471dcf3030d1
-
SHA1
527c50aa5f88292a9641f5d9ff227a1d71d5b175
-
SHA256
b79210f21130fa1eba38522bddbfc17b5e390cc0cc874805489324cc4f1d744e
-
SHA512
fb811300f93a3f7e815462d5c6e1240a4ffd5d0bdbdae7007344f730552b3031a0a3a4d673684de149f06eeb98ab5dbcc23a9eec1639db655682b09893c6dfab
-
SSDEEP
12288:HsM+aTA3c+FK1vrlVYBVignBtZnfVq4cz1i5pP9kPQy:MV4W8hqBYgnBLfVqx1Wjkf
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-