General
-
Target
264ac9cb3484e95fef736bc8f6c16ae0_JaffaCakes118
-
Size
196KB
-
Sample
240704-1ezc3szfmj
-
MD5
264ac9cb3484e95fef736bc8f6c16ae0
-
SHA1
898412240eeab60c57f4650ca8e330f42ca9d6b4
-
SHA256
fde653fd76ec66851fa802b44269041643ba6a6d95e905da932cd3fa72010128
-
SHA512
7225accea5d4c6f2e5a5e0b65186980f37c541237ee05e871b057a7020011e5cf2dcad305fdded448ca1c307fc9de848b3ed1d5e8732017dd213a01086bfc043
-
SSDEEP
3072:5Jsue4cQPGDQicxBrGB+GJuyGI/YL1oxR8HXQ:5JsxrQP4aGjQyM1y+g
Malware Config
Targets
-
-
Target
264ac9cb3484e95fef736bc8f6c16ae0_JaffaCakes118
-
Size
196KB
-
MD5
264ac9cb3484e95fef736bc8f6c16ae0
-
SHA1
898412240eeab60c57f4650ca8e330f42ca9d6b4
-
SHA256
fde653fd76ec66851fa802b44269041643ba6a6d95e905da932cd3fa72010128
-
SHA512
7225accea5d4c6f2e5a5e0b65186980f37c541237ee05e871b057a7020011e5cf2dcad305fdded448ca1c307fc9de848b3ed1d5e8732017dd213a01086bfc043
-
SSDEEP
3072:5Jsue4cQPGDQicxBrGB+GJuyGI/YL1oxR8HXQ:5JsxrQP4aGjQyM1y+g
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-