General
-
Target
a2b721f1d875dd771e6d1c48e48f62bd_JaffaCakes118
-
Size
89KB
-
Sample
240612-2ga9psxapl
-
MD5
a2b721f1d875dd771e6d1c48e48f62bd
-
SHA1
eb98ed14522648f0f174b1f7abd94873d840c35e
-
SHA256
bea89aa9a79b6116e5a76377155d32a97ba6dcdd8033ab101f3ae947c5d89675
-
SHA512
1d058c2b9521a20f63debe420c2286d8098122d1475c22b6ca7a412e14e32705dfc3d4cd7e90f0d06c504666d5d18411e8488074af9f0626f0668283baf662cd
-
SSDEEP
1536:uKf8XLvVqTMKY1QRo+9ph5Vjxo2luVyFiKWbE6wq4OAuX1cTvMEaykzm6:VfsxooepJjxFlKyXOxbEaq6
Behavioral task
behavioral1
Sample
a2b721f1d875dd771e6d1c48e48f62bd_JaffaCakes118.exe
Resource
win7-20240611-en
Malware Config
Extracted
pony
http://gamestoredownload.download/lionsetup/settingslion/gate.php
Targets
-
-
Target
a2b721f1d875dd771e6d1c48e48f62bd_JaffaCakes118
-
Size
89KB
-
MD5
a2b721f1d875dd771e6d1c48e48f62bd
-
SHA1
eb98ed14522648f0f174b1f7abd94873d840c35e
-
SHA256
bea89aa9a79b6116e5a76377155d32a97ba6dcdd8033ab101f3ae947c5d89675
-
SHA512
1d058c2b9521a20f63debe420c2286d8098122d1475c22b6ca7a412e14e32705dfc3d4cd7e90f0d06c504666d5d18411e8488074af9f0626f0668283baf662cd
-
SSDEEP
1536:uKf8XLvVqTMKY1QRo+9ph5Vjxo2luVyFiKWbE6wq4OAuX1cTvMEaykzm6:VfsxooepJjxFlKyXOxbEaq6
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-