General
-
Target
20caf40b228c6be2923c3fd6f66d6971_JaffaCakes118
-
Size
136KB
-
Sample
240703-c3eftaxdpm
-
MD5
20caf40b228c6be2923c3fd6f66d6971
-
SHA1
550aeffe8b6f1ee014178e0d6dc3b695194695e4
-
SHA256
24de795318feb800ec993a9208aa9536c795e4e41af114456f2efe5c44de63d1
-
SHA512
a0d4f8e799d8d8b7af72a54df4ac2b1b713bfeab989aa27a85a7562a9ef99a640a866d807060a0911e5982a26234ef56cead8fbc3dc912c107caf10ac473e5d8
-
SSDEEP
3072:BmN0dC3wjBfQn7WbIqH0ybZBiOllyEmcP82+aVdOt66VGegmU:BmidJQn7WbIqH0ybZBiOllyE5D+aVkjD
Malware Config
Targets
-
-
Target
20caf40b228c6be2923c3fd6f66d6971_JaffaCakes118
-
Size
136KB
-
MD5
20caf40b228c6be2923c3fd6f66d6971
-
SHA1
550aeffe8b6f1ee014178e0d6dc3b695194695e4
-
SHA256
24de795318feb800ec993a9208aa9536c795e4e41af114456f2efe5c44de63d1
-
SHA512
a0d4f8e799d8d8b7af72a54df4ac2b1b713bfeab989aa27a85a7562a9ef99a640a866d807060a0911e5982a26234ef56cead8fbc3dc912c107caf10ac473e5d8
-
SSDEEP
3072:BmN0dC3wjBfQn7WbIqH0ybZBiOllyEmcP82+aVdOt66VGegmU:BmidJQn7WbIqH0ybZBiOllyE5D+aVkjD
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-