General
-
Target
6de3da12ea83180aed2fa3dabc37cbe0_JaffaCakes118
-
Size
3.7MB
-
Sample
240524-kearqabb91
-
MD5
6de3da12ea83180aed2fa3dabc37cbe0
-
SHA1
c547617a266984c58743716a08f8662f3d8bb281
-
SHA256
d92cea79ef6057193ed6349af43aa25ff43b2e7340d1e3ed2aad3d8f384642b4
-
SHA512
4141a1544626bd94cd7fb153ae77420227bf14dbc369bce549dff7f021a21ccb4c2cf626fde6f5d10f87bd09e710784d6d7bcdf1df6733c31fff11a8b75f11c6
-
SSDEEP
49152:cYn2JVKh1VrdmC/1xpLzgYSHx4yzj8zow4ylvrFgn/y5q2DiAtGJqT5+GPd:c2FdzgYSHx4yzj8zowFdyotWAH
Behavioral task
behavioral1
Sample
6de3da12ea83180aed2fa3dabc37cbe0_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
6de3da12ea83180aed2fa3dabc37cbe0_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
6de3da12ea83180aed2fa3dabc37cbe0_JaffaCakes118
-
Size
3.7MB
-
MD5
6de3da12ea83180aed2fa3dabc37cbe0
-
SHA1
c547617a266984c58743716a08f8662f3d8bb281
-
SHA256
d92cea79ef6057193ed6349af43aa25ff43b2e7340d1e3ed2aad3d8f384642b4
-
SHA512
4141a1544626bd94cd7fb153ae77420227bf14dbc369bce549dff7f021a21ccb4c2cf626fde6f5d10f87bd09e710784d6d7bcdf1df6733c31fff11a8b75f11c6
-
SSDEEP
49152:cYn2JVKh1VrdmC/1xpLzgYSHx4yzj8zow4ylvrFgn/y5q2DiAtGJqT5+GPd:c2FdzgYSHx4yzj8zowFdyotWAH
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-