General
-
Target
734e6c145f724e1436df489bf53ab64c_JaffaCakes118
-
Size
624KB
-
Sample
240525-1a4r1abe42
-
MD5
734e6c145f724e1436df489bf53ab64c
-
SHA1
e19436c070a7bfcbaad3ce0f6cce2650143b9081
-
SHA256
2284fb889d3aa18f0dd6fd00ce701fe4075d3e8307cec568e9ebb6bba1188fd2
-
SHA512
f73bffe9a02e7d940a7fa24cae3e6f39b6c411f292c18c0569cb9ad91da2c9aaec213278b1eefa3c8e9935f64e66e5797a49b460ee84f90e1ac658344412e8c7
-
SSDEEP
12288:5UdZT1ZPtL5S05tmnqtfPp7WQfds84tsIDHPYg000wch63NM85:mdZTX7S05tmqrShHPYxbTw3NM85
Static task
static1
Behavioral task
behavioral1
Sample
734e6c145f724e1436df489bf53ab64c_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
734e6c145f724e1436df489bf53ab64c_JaffaCakes118.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
734e6c145f724e1436df489bf53ab64c_JaffaCakes118
-
Size
624KB
-
MD5
734e6c145f724e1436df489bf53ab64c
-
SHA1
e19436c070a7bfcbaad3ce0f6cce2650143b9081
-
SHA256
2284fb889d3aa18f0dd6fd00ce701fe4075d3e8307cec568e9ebb6bba1188fd2
-
SHA512
f73bffe9a02e7d940a7fa24cae3e6f39b6c411f292c18c0569cb9ad91da2c9aaec213278b1eefa3c8e9935f64e66e5797a49b460ee84f90e1ac658344412e8c7
-
SSDEEP
12288:5UdZT1ZPtL5S05tmnqtfPp7WQfds84tsIDHPYg000wch63NM85:mdZTX7S05tmqrShHPYxbTw3NM85
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Drops desktop.ini file(s)
-