General
-
Target
2d9ad1c95a4f9a2be538695e6c0d5408_JaffaCakes118
-
Size
224KB
-
Sample
240708-yj992awbpj
-
MD5
2d9ad1c95a4f9a2be538695e6c0d5408
-
SHA1
0a7014f637eeb74a48cb5415d948e5876b7d4f65
-
SHA256
30b07540ccccae550572b36398b5069f24083b416e63f62dea9121d30a101305
-
SHA512
f9fd7d2e8e7400bf8eab8be8bf22e62688bb51c03c8123cc7a72881d2c821f3dab2bdddfe4d21726a0ca6d221a8c03e201200a7ca38d009fab885d13d63d506e
-
SSDEEP
6144:lnwOzydERpZDRZDI1/3W6EBZB07msnNJMhYq95uKLK:lnwO2OV/sJyBZK7nnNihYOuKL
Malware Config
Targets
-
-
Target
2d9ad1c95a4f9a2be538695e6c0d5408_JaffaCakes118
-
Size
224KB
-
MD5
2d9ad1c95a4f9a2be538695e6c0d5408
-
SHA1
0a7014f637eeb74a48cb5415d948e5876b7d4f65
-
SHA256
30b07540ccccae550572b36398b5069f24083b416e63f62dea9121d30a101305
-
SHA512
f9fd7d2e8e7400bf8eab8be8bf22e62688bb51c03c8123cc7a72881d2c821f3dab2bdddfe4d21726a0ca6d221a8c03e201200a7ca38d009fab885d13d63d506e
-
SSDEEP
6144:lnwOzydERpZDRZDI1/3W6EBZB07msnNJMhYq95uKLK:lnwO2OV/sJyBZK7nnNihYOuKL
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-