General
-
Target
36b32202db1650a6d2043dff1d0247a6_JaffaCakes118
-
Size
224KB
-
Sample
240710-2pa9nstgrl
-
MD5
36b32202db1650a6d2043dff1d0247a6
-
SHA1
48723ac8e7276aef05bea7954c5cc0240c0c8c01
-
SHA256
02cb1250c92fbf29764150bf2fac543115735f2c667a80c9554087344ebb69f0
-
SHA512
d1f9a494113be8d033f2cedfb0c262a937d7bdebcc4cfede81b2df13865eeb05beffd19a70e8930fa05094f24f5ff4488475f9b44a741df797ee5f829143ff5e
-
SSDEEP
3072:S8GgVsZ5qbLj1w+A3W66NYa7CgPCmHV1BdHDYqzUnQUoflDc:So2qvj1BA76HCgPCmHV1BdHDYoUgO
Malware Config
Targets
-
-
Target
36b32202db1650a6d2043dff1d0247a6_JaffaCakes118
-
Size
224KB
-
MD5
36b32202db1650a6d2043dff1d0247a6
-
SHA1
48723ac8e7276aef05bea7954c5cc0240c0c8c01
-
SHA256
02cb1250c92fbf29764150bf2fac543115735f2c667a80c9554087344ebb69f0
-
SHA512
d1f9a494113be8d033f2cedfb0c262a937d7bdebcc4cfede81b2df13865eeb05beffd19a70e8930fa05094f24f5ff4488475f9b44a741df797ee5f829143ff5e
-
SSDEEP
3072:S8GgVsZ5qbLj1w+A3W66NYa7CgPCmHV1BdHDYqzUnQUoflDc:So2qvj1BA76HCgPCmHV1BdHDYoUgO
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-