General
-
Target
212b843f097d4bd86dec9e7f7b1a04e7_JaffaCakes118
-
Size
132KB
-
Sample
240703-fst1asyeqg
-
MD5
212b843f097d4bd86dec9e7f7b1a04e7
-
SHA1
445af4de5bfb4d14d73df69b54a5fcf3004f6bd0
-
SHA256
dd8d5c6163a7c86db68034ac5ff175c2ff268ed9c9665a1b7e95593b69711448
-
SHA512
5991f039c0d6cbd47ca65c2ec31245320b8f7ee04274b09f1b704d5ab5cd2b414f3e3ab889732e064434bff3602693adc907b1b2f62224151af0e67438232845
-
SSDEEP
3072:E3k/hPrdVfWM8RM/8KmwBErXXFefQmD8ampjE6ei55:T/FX8/KmwBEjXFeos8aCteo
Malware Config
Targets
-
-
Target
212b843f097d4bd86dec9e7f7b1a04e7_JaffaCakes118
-
Size
132KB
-
MD5
212b843f097d4bd86dec9e7f7b1a04e7
-
SHA1
445af4de5bfb4d14d73df69b54a5fcf3004f6bd0
-
SHA256
dd8d5c6163a7c86db68034ac5ff175c2ff268ed9c9665a1b7e95593b69711448
-
SHA512
5991f039c0d6cbd47ca65c2ec31245320b8f7ee04274b09f1b704d5ab5cd2b414f3e3ab889732e064434bff3602693adc907b1b2f62224151af0e67438232845
-
SSDEEP
3072:E3k/hPrdVfWM8RM/8KmwBErXXFefQmD8ampjE6ei55:T/FX8/KmwBEjXFeos8aCteo
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-