General
-
Target
a82976a2138eba46d5bd023842fef3c6_JaffaCakes118
-
Size
671KB
-
Sample
240614-f7vv5swhke
-
MD5
a82976a2138eba46d5bd023842fef3c6
-
SHA1
64716af2f1c8067d088a7b35879e13e489f9d0af
-
SHA256
11004f34fede54729b367c6149e8055db75a85569beb1f02677fe06e90f05ac0
-
SHA512
b849c6c79a2e3adb3bcbbd9ecdf99b81169cbdce02406dac9ed663915f2548c29dddcdaa4b27f9ea5342ebfd09b1b5e298caa755a7fcb22ff684504e521a6143
-
SSDEEP
12288:Bu6qjBVl1tlWoXZGfr/2ER+iQk4dMrv4ZlElGQzIdXi5YqFvPpP42XhJXQ8sKkmR:I6qjnJMXaxiQvdMeElxyyvtm0TsKk0UA
Static task
static1
Behavioral task
behavioral1
Sample
a82976a2138eba46d5bd023842fef3c6_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
a82976a2138eba46d5bd023842fef3c6_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
a82976a2138eba46d5bd023842fef3c6_JaffaCakes118
-
Size
671KB
-
MD5
a82976a2138eba46d5bd023842fef3c6
-
SHA1
64716af2f1c8067d088a7b35879e13e489f9d0af
-
SHA256
11004f34fede54729b367c6149e8055db75a85569beb1f02677fe06e90f05ac0
-
SHA512
b849c6c79a2e3adb3bcbbd9ecdf99b81169cbdce02406dac9ed663915f2548c29dddcdaa4b27f9ea5342ebfd09b1b5e298caa755a7fcb22ff684504e521a6143
-
SSDEEP
12288:Bu6qjBVl1tlWoXZGfr/2ER+iQk4dMrv4ZlElGQzIdXi5YqFvPpP42XhJXQ8sKkmR:I6qjnJMXaxiQvdMeElxyyvtm0TsKk0UA
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Drops desktop.ini file(s)
-