General
-
Target
0d8dce41464d13e11314d40f22d6f500_JaffaCakes118
-
Size
210KB
-
Sample
240625-lgqrdsvcpk
-
MD5
0d8dce41464d13e11314d40f22d6f500
-
SHA1
876b89ca1d81a7566bbfb173890bdb23e412d183
-
SHA256
68251438297df846e2f9367684c60c75b60f1af09c01a2a630f3b6b251bc4dca
-
SHA512
9a90d8e3079213ebd3973cec7ed667a18358368158091738d219cf6e9e77dea675ffe6750a5b6dee61c8356952b9fb92483f8b17edd7a2a72f23cf9502551a81
-
SSDEEP
3072:Nm9OuDUtnfse+9TIALYnMGEEB5Zf2JMVoutX:Nm8uufse+JIAKEEBHdVoSX
Static task
static1
Behavioral task
behavioral1
Sample
0d8dce41464d13e11314d40f22d6f500_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
0d8dce41464d13e11314d40f22d6f500_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
0d8dce41464d13e11314d40f22d6f500_JaffaCakes118
-
Size
210KB
-
MD5
0d8dce41464d13e11314d40f22d6f500
-
SHA1
876b89ca1d81a7566bbfb173890bdb23e412d183
-
SHA256
68251438297df846e2f9367684c60c75b60f1af09c01a2a630f3b6b251bc4dca
-
SHA512
9a90d8e3079213ebd3973cec7ed667a18358368158091738d219cf6e9e77dea675ffe6750a5b6dee61c8356952b9fb92483f8b17edd7a2a72f23cf9502551a81
-
SSDEEP
3072:Nm9OuDUtnfse+9TIALYnMGEEB5Zf2JMVoutX:Nm8uufse+JIAKEEBHdVoSX
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Drops file in System32 directory
-