General
-
Target
90878a32c28dee83565c0306f5649ec7_JaffaCakes118
-
Size
709KB
-
Sample
240603-e3y7bscf64
-
MD5
90878a32c28dee83565c0306f5649ec7
-
SHA1
044c5be36322e1609d1935f619bac8300cd678d0
-
SHA256
13b9f4ef5542ede30971ad78d3efff1c19c521d98def92d0c0abd0ce6e4f95fe
-
SHA512
94b2a2a7177a6296e5fab08a55bf6583e39388238c8a427d327c75dc2896f5344e6fe60403719aba9217edf68f668190bc661e958e6d3a973d7c58bd249e017d
-
SSDEEP
12288:Udk1Dbf27xi6PsmDJyodALFhRfM+JOGnK/FBOjX0nnRn1BjrH8IfV6K:8k1DbHmko6L3y+gVObuRnnrHDV6K
Static task
static1
Behavioral task
behavioral1
Sample
90878a32c28dee83565c0306f5649ec7_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
90878a32c28dee83565c0306f5649ec7_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
90878a32c28dee83565c0306f5649ec7_JaffaCakes118
-
Size
709KB
-
MD5
90878a32c28dee83565c0306f5649ec7
-
SHA1
044c5be36322e1609d1935f619bac8300cd678d0
-
SHA256
13b9f4ef5542ede30971ad78d3efff1c19c521d98def92d0c0abd0ce6e4f95fe
-
SHA512
94b2a2a7177a6296e5fab08a55bf6583e39388238c8a427d327c75dc2896f5344e6fe60403719aba9217edf68f668190bc661e958e6d3a973d7c58bd249e017d
-
SSDEEP
12288:Udk1Dbf27xi6PsmDJyodALFhRfM+JOGnK/FBOjX0nnRn1BjrH8IfV6K:8k1DbHmko6L3y+gVObuRnnrHDV6K
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Drops desktop.ini file(s)
-