General
-
Target
03e067ac6c99b3f7856f632f9e242756_JaffaCakes118
-
Size
168KB
-
Sample
240620-hwg61szcln
-
MD5
03e067ac6c99b3f7856f632f9e242756
-
SHA1
372ab683092173cb436133e7a2b5f70b7875e0bd
-
SHA256
7912f1b324a5ffa5db98992cf820a14de1d199d9deb872b67a35573f57173215
-
SHA512
3da97152784b7e2304ca0659daef1bf6c93e232e27534a8e04aa2aa7bfd24726fba32a0daacdac3412028514867b798843f0ac36fc72681cd363c12e3899b537
-
SSDEEP
768:6bqtEh/Fe/1mJva/lmqtu9XRyVk8EycBPDcPBPVODxIRUCInwNfxSGPJ27N:6XS17dcBPDcPBPMDXwNfxf0
Malware Config
Targets
-
-
Target
03e067ac6c99b3f7856f632f9e242756_JaffaCakes118
-
Size
168KB
-
MD5
03e067ac6c99b3f7856f632f9e242756
-
SHA1
372ab683092173cb436133e7a2b5f70b7875e0bd
-
SHA256
7912f1b324a5ffa5db98992cf820a14de1d199d9deb872b67a35573f57173215
-
SHA512
3da97152784b7e2304ca0659daef1bf6c93e232e27534a8e04aa2aa7bfd24726fba32a0daacdac3412028514867b798843f0ac36fc72681cd363c12e3899b537
-
SSDEEP
768:6bqtEh/Fe/1mJva/lmqtu9XRyVk8EycBPDcPBPVODxIRUCInwNfxSGPJ27N:6XS17dcBPDcPBPMDXwNfxf0
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-