General
-
Target
157c396972df3347a888183923273dde_JaffaCakes118
-
Size
252KB
-
Sample
240627-lexrxstgne
-
MD5
157c396972df3347a888183923273dde
-
SHA1
0c24e2185c625d0deb47cea48ebfe8b17d6202c9
-
SHA256
36f3166d397d5f0fede048598ace51cf82228794d11c4fa678386d9aff1f2fdc
-
SHA512
7101f861219e50c74bc8b4bf4a0acd0415ec195220c5557ed4eb22be7a5bbfeb1bb5d03f6a03a69dfbe6f2571b57ddac72fb34502d08fd595f04bced8d0ccc38
-
SSDEEP
6144:PTyViVGBng9Gg4S628gA/igGuncMkcH/AeKnvmb7/D26ppSgCbvfFa:7eigBngr4S628dFncMkcHIeKnvmb7/Db
Malware Config
Targets
-
-
Target
157c396972df3347a888183923273dde_JaffaCakes118
-
Size
252KB
-
MD5
157c396972df3347a888183923273dde
-
SHA1
0c24e2185c625d0deb47cea48ebfe8b17d6202c9
-
SHA256
36f3166d397d5f0fede048598ace51cf82228794d11c4fa678386d9aff1f2fdc
-
SHA512
7101f861219e50c74bc8b4bf4a0acd0415ec195220c5557ed4eb22be7a5bbfeb1bb5d03f6a03a69dfbe6f2571b57ddac72fb34502d08fd595f04bced8d0ccc38
-
SSDEEP
6144:PTyViVGBng9Gg4S628gA/igGuncMkcH/AeKnvmb7/D26ppSgCbvfFa:7eigBngr4S628dFncMkcHIeKnvmb7/Db
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-