General
-
Target
7d6402b5f19f6a84ac471edbe9c21bdf_JaffaCakes118
-
Size
4.5MB
-
Sample
240528-sfdtrsah26
-
MD5
7d6402b5f19f6a84ac471edbe9c21bdf
-
SHA1
39394206c4fb590e4dffc200ce71e73d373a7af4
-
SHA256
2834f08114dd9a0583deb4d44ed36b6bf914d26cb9482c99cbed6e1c5dc4aa83
-
SHA512
d16f031b5204d2ea8345867d11767ccc5d10ef17f1249ef721237440b349a5c853fecd2c53eac8a0a3c1c415aaeb1e33b41a904299bd744d8f21ae3f250dbb9f
-
SSDEEP
98304:HKF7KQF1iEaGzM038RzYf0ML2x5tTDaLclizt5CK:HS7KQrLM/RzYI7Da4IF
Static task
static1
Behavioral task
behavioral1
Sample
7d6402b5f19f6a84ac471edbe9c21bdf_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
7d6402b5f19f6a84ac471edbe9c21bdf_JaffaCakes118
-
Size
4.5MB
-
MD5
7d6402b5f19f6a84ac471edbe9c21bdf
-
SHA1
39394206c4fb590e4dffc200ce71e73d373a7af4
-
SHA256
2834f08114dd9a0583deb4d44ed36b6bf914d26cb9482c99cbed6e1c5dc4aa83
-
SHA512
d16f031b5204d2ea8345867d11767ccc5d10ef17f1249ef721237440b349a5c853fecd2c53eac8a0a3c1c415aaeb1e33b41a904299bd744d8f21ae3f250dbb9f
-
SSDEEP
98304:HKF7KQF1iEaGzM038RzYf0ML2x5tTDaLclizt5CK:HS7KQrLM/RzYI7Da4IF
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-