General
-
Target
039802449c72b4e620d0c1274b514251_JaffaCakes118
-
Size
21KB
-
Sample
240620-g4yy3axhlq
-
MD5
039802449c72b4e620d0c1274b514251
-
SHA1
dab9986dc475ba0ef71b5ae4b51b7174bb63cba8
-
SHA256
282a1528ba328ed143278b8b7fec41fb6560c7295b663a60b5c67a27cd263ba4
-
SHA512
0c15dd7f2ad0974dfaee167785d5a85940d2cf699c438e02b3a6f918d0352ae75b2e6c89e2ddf3d7e3e42ead812c5098b29158820c185a46e561e9a42ea9c95b
-
SSDEEP
384:tUOa0dKUYoTm0HtdDgRcFQXEfppgiJkLCFY6ZADlYeDgdlL74:tUalLC4LCwpGie5YADZDELk
Malware Config
Targets
-
-
Target
039802449c72b4e620d0c1274b514251_JaffaCakes118
-
Size
21KB
-
MD5
039802449c72b4e620d0c1274b514251
-
SHA1
dab9986dc475ba0ef71b5ae4b51b7174bb63cba8
-
SHA256
282a1528ba328ed143278b8b7fec41fb6560c7295b663a60b5c67a27cd263ba4
-
SHA512
0c15dd7f2ad0974dfaee167785d5a85940d2cf699c438e02b3a6f918d0352ae75b2e6c89e2ddf3d7e3e42ead812c5098b29158820c185a46e561e9a42ea9c95b
-
SSDEEP
384:tUOa0dKUYoTm0HtdDgRcFQXEfppgiJkLCFY6ZADlYeDgdlL74:tUalLC4LCwpGie5YADZDELk
Score10/10-
Modifies visibility of file extensions in Explorer
-
Disables RegEdit via registry modification
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-