General
-
Target
0fd4350c1d91f68caf5060fc8eac2365_JaffaCakes118
-
Size
2.5MB
-
Sample
240625-2vb36ayejb
-
MD5
0fd4350c1d91f68caf5060fc8eac2365
-
SHA1
bdd3770e7676ed116915de64f97635692a1d2aec
-
SHA256
d2c89f901636cc0149975eca8c862d80abe7ac15df6c75bde9119c4da9f4d70a
-
SHA512
7c2eb6a96340e2fb9e44c8b1705c0a71e16e6e7022444921ecadd42e292c7e22b8b8256002aa38a0dd22d15b85947a1d11d0a698ffbe72f71acd5729bb7be890
-
SSDEEP
49152:paIfjLZaYWhqUx+dRPMcFIpQx4ihbIwZJPlFsh28XUt4JHT5jQ5pG6ue+wg:VLLYrAGshMcF/R6U8XUyRT5+pIe+wg
Malware Config
Targets
-
-
Target
0fd4350c1d91f68caf5060fc8eac2365_JaffaCakes118
-
Size
2.5MB
-
MD5
0fd4350c1d91f68caf5060fc8eac2365
-
SHA1
bdd3770e7676ed116915de64f97635692a1d2aec
-
SHA256
d2c89f901636cc0149975eca8c862d80abe7ac15df6c75bde9119c4da9f4d70a
-
SHA512
7c2eb6a96340e2fb9e44c8b1705c0a71e16e6e7022444921ecadd42e292c7e22b8b8256002aa38a0dd22d15b85947a1d11d0a698ffbe72f71acd5729bb7be890
-
SSDEEP
49152:paIfjLZaYWhqUx+dRPMcFIpQx4ihbIwZJPlFsh28XUt4JHT5jQ5pG6ue+wg:VLLYrAGshMcF/R6U8XUyRT5+pIe+wg
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-