General
-
Target
0802802c7b00b9a00b56456300a9faee_JaffaCakes118
-
Size
793KB
-
Sample
240624-mpakta1flr
-
MD5
0802802c7b00b9a00b56456300a9faee
-
SHA1
af1351fb09a330c8f494e389108d9499794c526c
-
SHA256
e69e9588ac3a2b9175ec6c85464a55190151df9c7a9f6e4f0ec1ee9f485fd1bb
-
SHA512
b13b3a4b8e8ecee1ec949f7c3291f1a8706aa8fd63233bfcce0266b4e4aa5571592b3d308831669ded16a62abc00b69df3d476cbb47ef76f767b4c1d6d0a67c1
-
SSDEEP
24576:UI6nglvHo+rPMUKDptjKmszO295cSZu5tWxC:UI6nGwzKmqQSZP8
Malware Config
Targets
-
-
Target
0802802c7b00b9a00b56456300a9faee_JaffaCakes118
-
Size
793KB
-
MD5
0802802c7b00b9a00b56456300a9faee
-
SHA1
af1351fb09a330c8f494e389108d9499794c526c
-
SHA256
e69e9588ac3a2b9175ec6c85464a55190151df9c7a9f6e4f0ec1ee9f485fd1bb
-
SHA512
b13b3a4b8e8ecee1ec949f7c3291f1a8706aa8fd63233bfcce0266b4e4aa5571592b3d308831669ded16a62abc00b69df3d476cbb47ef76f767b4c1d6d0a67c1
-
SSDEEP
24576:UI6nglvHo+rPMUKDptjKmszO295cSZu5tWxC:UI6nGwzKmqQSZP8
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-