General
-
Target
32ad2b06d86b0accc9f2823e4909ab55_JaffaCakes118
-
Size
156KB
-
Sample
240710-a8azgawejn
-
MD5
32ad2b06d86b0accc9f2823e4909ab55
-
SHA1
3ec786c9ea9e0dafb6cec7ad684216135ae23662
-
SHA256
341bc0a8c1c4ebf4fb6e0baefdb4f2466780ea8bf4eca22cf4ef3cb6aa1e5f0e
-
SHA512
76d5bbf6e0c4d174b435c53da6d8e8b8cb6ad4ee9078fdd42101cb77b4b5882e9588e8f563fe54d6827b702a2b264115417eedf2ff4daecad2b3bde6a1c98e75
-
SSDEEP
3072:YGoe5g+GwD8w2+d5bWIrJ4E5n41sSLeH8ozK/d/18UlyBaE5j4oQa:Y2WIrJ4E5n41pVN/jh4d
Malware Config
Targets
-
-
Target
32ad2b06d86b0accc9f2823e4909ab55_JaffaCakes118
-
Size
156KB
-
MD5
32ad2b06d86b0accc9f2823e4909ab55
-
SHA1
3ec786c9ea9e0dafb6cec7ad684216135ae23662
-
SHA256
341bc0a8c1c4ebf4fb6e0baefdb4f2466780ea8bf4eca22cf4ef3cb6aa1e5f0e
-
SHA512
76d5bbf6e0c4d174b435c53da6d8e8b8cb6ad4ee9078fdd42101cb77b4b5882e9588e8f563fe54d6827b702a2b264115417eedf2ff4daecad2b3bde6a1c98e75
-
SSDEEP
3072:YGoe5g+GwD8w2+d5bWIrJ4E5n41sSLeH8ozK/d/18UlyBaE5j4oQa:Y2WIrJ4E5n41pVN/jh4d
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-