General
-
Target
2cb04ec24fc3909daf822cf9d4738811_JaffaCakes118
-
Size
200KB
-
Sample
240708-rqxtyswbmc
-
MD5
2cb04ec24fc3909daf822cf9d4738811
-
SHA1
abb95ba132045f4b7dd8c57624e7761efa99dc6d
-
SHA256
fbc1537d870dc8707e5dcf099dabf16a4fcb82dbfda007e0193419afeaac4243
-
SHA512
705c4f11f9b7ed9f87062939d924f19598b3dcdca63c38d287abe752c823e4e475656b030576b812a08c24c23ab0d49072570ebe1e3d53bb5bd8f7d1f0fc5493
-
SSDEEP
3072:9UgV9I0tQ9nLHbB9WHCS0AgTlhsp3mWEhH:bI4QxL7B9WHK9Jhsp3ap
Malware Config
Targets
-
-
Target
2cb04ec24fc3909daf822cf9d4738811_JaffaCakes118
-
Size
200KB
-
MD5
2cb04ec24fc3909daf822cf9d4738811
-
SHA1
abb95ba132045f4b7dd8c57624e7761efa99dc6d
-
SHA256
fbc1537d870dc8707e5dcf099dabf16a4fcb82dbfda007e0193419afeaac4243
-
SHA512
705c4f11f9b7ed9f87062939d924f19598b3dcdca63c38d287abe752c823e4e475656b030576b812a08c24c23ab0d49072570ebe1e3d53bb5bd8f7d1f0fc5493
-
SSDEEP
3072:9UgV9I0tQ9nLHbB9WHCS0AgTlhsp3mWEhH:bI4QxL7B9WHK9Jhsp3ap
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-