General
-
Target
8472116ab19bb6d59dc06569fac4326e_JaffaCakes118
-
Size
340KB
-
Sample
240530-rmpn6sbd4s
-
MD5
8472116ab19bb6d59dc06569fac4326e
-
SHA1
186422d2977a959b34ef1d6d22ba4f716798109e
-
SHA256
fa9100974eee48fb354bff0bd3d10d6b5d6ff64f44938b39f85c17d99a3a2591
-
SHA512
aa67ba9c809a55f7a471a72cb5ab3ba9aaad2dcb7bc19b7802b3190b37fdc666a901dcd2d7cf3525e5cb62d3af480a4c8b2ebe4fc544f676c66cddae2cb1740c
-
SSDEEP
3072:F4i+9QCJHNEQ05AxsN5quPFKlAE81s7xa8FT18jgUyAt2DFQQ1iLRSBApJxVXhCg:h+9QW4r7FGAE8oh8jyGQ1PAjXYMQC
Static task
static1
Behavioral task
behavioral1
Sample
8472116ab19bb6d59dc06569fac4326e_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
8472116ab19bb6d59dc06569fac4326e_JaffaCakes118.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
8472116ab19bb6d59dc06569fac4326e_JaffaCakes118
-
Size
340KB
-
MD5
8472116ab19bb6d59dc06569fac4326e
-
SHA1
186422d2977a959b34ef1d6d22ba4f716798109e
-
SHA256
fa9100974eee48fb354bff0bd3d10d6b5d6ff64f44938b39f85c17d99a3a2591
-
SHA512
aa67ba9c809a55f7a471a72cb5ab3ba9aaad2dcb7bc19b7802b3190b37fdc666a901dcd2d7cf3525e5cb62d3af480a4c8b2ebe4fc544f676c66cddae2cb1740c
-
SSDEEP
3072:F4i+9QCJHNEQ05AxsN5quPFKlAE81s7xa8FT18jgUyAt2DFQQ1iLRSBApJxVXhCg:h+9QW4r7FGAE8oh8jyGQ1PAjXYMQC
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-