General
-
Target
2222a277faf23099daa91a28ba8b64c0_JaffaCakes118
-
Size
2.0MB
-
Sample
240703-m5p1fazamf
-
MD5
2222a277faf23099daa91a28ba8b64c0
-
SHA1
c6d5f252002d603395d9289e7df7c585677a3312
-
SHA256
f7f30c68408ac6bfda57da6d497cd5c32672a7697d91f25593f1093a284db925
-
SHA512
4d400ba7e5eadc08b87e64cf5a6f7a8e3640a1207a72d64178ac7c11e9f57fa4cb1fb31d925ca5c134a7e875c526bb4bfff4da73d29a597a7fca52656b890c66
-
SSDEEP
49152:vjVK3/r5oGb5x1FNykH23GBULB+WZSuRMcFA975ENBYXIl:vjU3m+HFNy62TLB+lGA9+ree
Malware Config
Targets
-
-
Target
2222a277faf23099daa91a28ba8b64c0_JaffaCakes118
-
Size
2.0MB
-
MD5
2222a277faf23099daa91a28ba8b64c0
-
SHA1
c6d5f252002d603395d9289e7df7c585677a3312
-
SHA256
f7f30c68408ac6bfda57da6d497cd5c32672a7697d91f25593f1093a284db925
-
SHA512
4d400ba7e5eadc08b87e64cf5a6f7a8e3640a1207a72d64178ac7c11e9f57fa4cb1fb31d925ca5c134a7e875c526bb4bfff4da73d29a597a7fca52656b890c66
-
SSDEEP
49152:vjVK3/r5oGb5x1FNykH23GBULB+WZSuRMcFA975ENBYXIl:vjU3m+HFNy62TLB+lGA9+ree
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-