General
-
Target
3182cffd14559b90de009ad4f8369398_JaffaCakes118
-
Size
54KB
-
Sample
240709-w88fmazhma
-
MD5
3182cffd14559b90de009ad4f8369398
-
SHA1
973dc0a452e866a685352a8ec427b467568bfffe
-
SHA256
0111fd0defe12f19365b12c4c45f8061c414e464ae01fff0c4e280628e2110b8
-
SHA512
c357526155c0fc80e2f34956a44b28bf31b36f0c5a09e7158195f9fc77366d7e87a4bb8388fd88db72d719b24e032f39381e85adcab75e309b32508f40177542
-
SSDEEP
1536:E1RLNHqF5r1p/8d4GuY23wKHhIH92O1NKTz:GHQB/8d4zY2gVdHKn
Malware Config
Targets
-
-
Target
3182cffd14559b90de009ad4f8369398_JaffaCakes118
-
Size
54KB
-
MD5
3182cffd14559b90de009ad4f8369398
-
SHA1
973dc0a452e866a685352a8ec427b467568bfffe
-
SHA256
0111fd0defe12f19365b12c4c45f8061c414e464ae01fff0c4e280628e2110b8
-
SHA512
c357526155c0fc80e2f34956a44b28bf31b36f0c5a09e7158195f9fc77366d7e87a4bb8388fd88db72d719b24e032f39381e85adcab75e309b32508f40177542
-
SSDEEP
1536:E1RLNHqF5r1p/8d4GuY23wKHhIH92O1NKTz:GHQB/8d4zY2gVdHKn
Score8/10-
Sets file to hidden
Modifies file attributes to stop it showing in Explorer etc.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Adds Run key to start application
-