General
-
Target
1c3729bed187821a80d57e9fb6597029_JaffaCakes118
-
Size
248KB
-
Sample
240701-x4l79sveld
-
MD5
1c3729bed187821a80d57e9fb6597029
-
SHA1
b763344ddc687198c3c9a26f88f5307caa00dbf9
-
SHA256
a55788c33ffe72a0305e2d3ab240d473183ceee757012f179958140909e31b49
-
SHA512
b87893c45663c0504517a1cf9a672435993f089cd32a8618dd979b4ef624d8a8305eeedcd8e1881fb57c3bd638e1bf57ad4a0a787bc6297b503372904c7f07d8
-
SSDEEP
6144:3Vg56UxwGQpNnVN8KqzeLM+8MvrLHHx5SQlibjXGWNkolay4p4bH8uO:HHpNnlPICrDS0ibLG/l
Malware Config
Targets
-
-
Target
1c3729bed187821a80d57e9fb6597029_JaffaCakes118
-
Size
248KB
-
MD5
1c3729bed187821a80d57e9fb6597029
-
SHA1
b763344ddc687198c3c9a26f88f5307caa00dbf9
-
SHA256
a55788c33ffe72a0305e2d3ab240d473183ceee757012f179958140909e31b49
-
SHA512
b87893c45663c0504517a1cf9a672435993f089cd32a8618dd979b4ef624d8a8305eeedcd8e1881fb57c3bd638e1bf57ad4a0a787bc6297b503372904c7f07d8
-
SSDEEP
6144:3Vg56UxwGQpNnVN8KqzeLM+8MvrLHHx5SQlibjXGWNkolay4p4bH8uO:HHpNnlPICrDS0ibLG/l
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-