General
-
Target
10092c825f3ec73c13771a528bbb2fe3_JaffaCakes118
-
Size
599KB
-
Sample
240626-ae19kasbrd
-
MD5
10092c825f3ec73c13771a528bbb2fe3
-
SHA1
b53e0c5d7961283accb4329e933551f412ee27d8
-
SHA256
4ccedbf94c6e7b14e7167e579674b71fa2a494422b6a558651925ca4a39efb82
-
SHA512
03db194bd6c4d92634cc94f1594fd84f8e32cc6d53b5d7ad8d1c518f4dc59d3e6f05d9d843be7e3dea74df38c2e79bd7f543e76900cb21cb02c069f7af2df32f
-
SSDEEP
12288:CAVYdhvXzYUIjrZ/mVVuY7vACnnVL9rw6Z174CZBIpR+kyCLwFGiljzIi:LVMaPKXn1xwMxXAplyCLnixz
Malware Config
Targets
-
-
Target
10092c825f3ec73c13771a528bbb2fe3_JaffaCakes118
-
Size
599KB
-
MD5
10092c825f3ec73c13771a528bbb2fe3
-
SHA1
b53e0c5d7961283accb4329e933551f412ee27d8
-
SHA256
4ccedbf94c6e7b14e7167e579674b71fa2a494422b6a558651925ca4a39efb82
-
SHA512
03db194bd6c4d92634cc94f1594fd84f8e32cc6d53b5d7ad8d1c518f4dc59d3e6f05d9d843be7e3dea74df38c2e79bd7f543e76900cb21cb02c069f7af2df32f
-
SSDEEP
12288:CAVYdhvXzYUIjrZ/mVVuY7vACnnVL9rw6Z174CZBIpR+kyCLwFGiljzIi:LVMaPKXn1xwMxXAplyCLnixz
Score8/10-
Drops file in Drivers directory
-
Sets service image path in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-