General
-
Target
15617c8ec326d440c4756c8ab32f01ad_JaffaCakes118
-
Size
552KB
-
Sample
240627-kqlclasgjg
-
MD5
15617c8ec326d440c4756c8ab32f01ad
-
SHA1
2308445339d1080cc7d9948169211599e0e38ba5
-
SHA256
bb6916bc6cf91cf8d76c8f1b66ef25579f8093923666a8d32f605dc10e93da60
-
SHA512
537dca9a446554803cf0c33d94c72629846bf7be84f9c18511600f0b21404adf78611c8615941149fb11facb6c217b6e5a3019e3465a2c22a53aa55b98afe60e
-
SSDEEP
12288:++GtVfjTQSaoINAHT1VQ1i3SyQEW85gzl4:+rt4/NArwjs5ol4
Behavioral task
behavioral1
Sample
15617c8ec326d440c4756c8ab32f01ad_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
urelas
218.54.31.226
218.54.31.165
Targets
-
-
Target
15617c8ec326d440c4756c8ab32f01ad_JaffaCakes118
-
Size
552KB
-
MD5
15617c8ec326d440c4756c8ab32f01ad
-
SHA1
2308445339d1080cc7d9948169211599e0e38ba5
-
SHA256
bb6916bc6cf91cf8d76c8f1b66ef25579f8093923666a8d32f605dc10e93da60
-
SHA512
537dca9a446554803cf0c33d94c72629846bf7be84f9c18511600f0b21404adf78611c8615941149fb11facb6c217b6e5a3019e3465a2c22a53aa55b98afe60e
-
SSDEEP
12288:++GtVfjTQSaoINAHT1VQ1i3SyQEW85gzl4:+rt4/NArwjs5ol4
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-