General
-
Target
893298d7e2b99941397eaebfdfb3bb6c_JaffaCakes118
-
Size
671KB
-
Sample
240601-dkfftsff5y
-
MD5
893298d7e2b99941397eaebfdfb3bb6c
-
SHA1
b33def610d6fcef68f9f1658741ad162b09369f1
-
SHA256
156a54706ed2c4d0afb562f66cda68ed053510a46d32680e5c0fe126c6e7c77c
-
SHA512
45040f12dd12d55c0bd89f168a1213e4c7867305b35a72ac8589f51dbb4d62e72d28c594bec471046454b4d48a0d1d24ff0949048410388388dfa1edbf1f64b2
-
SSDEEP
12288:SZJ7G1zskWtP44444ItPZkTKpPwHb/dgusOlMLSTQNirbCfrL6a:qJ7Uzj4yUo7Fdle8WIbCL6a
Static task
static1
Behavioral task
behavioral1
Sample
893298d7e2b99941397eaebfdfb3bb6c_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
893298d7e2b99941397eaebfdfb3bb6c_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
893298d7e2b99941397eaebfdfb3bb6c_JaffaCakes118
-
Size
671KB
-
MD5
893298d7e2b99941397eaebfdfb3bb6c
-
SHA1
b33def610d6fcef68f9f1658741ad162b09369f1
-
SHA256
156a54706ed2c4d0afb562f66cda68ed053510a46d32680e5c0fe126c6e7c77c
-
SHA512
45040f12dd12d55c0bd89f168a1213e4c7867305b35a72ac8589f51dbb4d62e72d28c594bec471046454b4d48a0d1d24ff0949048410388388dfa1edbf1f64b2
-
SSDEEP
12288:SZJ7G1zskWtP44444ItPZkTKpPwHb/dgusOlMLSTQNirbCfrL6a:qJ7Uzj4yUo7Fdle8WIbCL6a
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Drops desktop.ini file(s)
-