General
-
Target
3406dde5eb54cb9d452864f148a7e099_JaffaCakes118
-
Size
92KB
-
Sample
240710-knrftszenc
-
MD5
3406dde5eb54cb9d452864f148a7e099
-
SHA1
bc372c3590cd5154d9107b325dcf2e1b8e6c687c
-
SHA256
0b10360e9b49fcfb909d44b16c3655abc0fa9f5c46408606c9e8f887f6b47241
-
SHA512
f622ccf513263bf5595427740a94c3529a8316828e8b8d9e4a55e5c349404005ad50f3406a92a5e91189cf290c1f3c02a808fe975bab0882278513d35673b536
-
SSDEEP
768:ZROhEj5YZdr+KGz5BAtpm4eutfrWTVtTZ/BliKG1jiTa9McTfkQ3s0YgWSf:Z/8dS6pm4aTZ5XG1jiTa9McrkQ80YgW
Malware Config
Targets
-
-
Target
3406dde5eb54cb9d452864f148a7e099_JaffaCakes118
-
Size
92KB
-
MD5
3406dde5eb54cb9d452864f148a7e099
-
SHA1
bc372c3590cd5154d9107b325dcf2e1b8e6c687c
-
SHA256
0b10360e9b49fcfb909d44b16c3655abc0fa9f5c46408606c9e8f887f6b47241
-
SHA512
f622ccf513263bf5595427740a94c3529a8316828e8b8d9e4a55e5c349404005ad50f3406a92a5e91189cf290c1f3c02a808fe975bab0882278513d35673b536
-
SSDEEP
768:ZROhEj5YZdr+KGz5BAtpm4eutfrWTVtTZ/BliKG1jiTa9McTfkQ3s0YgWSf:Z/8dS6pm4aTZ5XG1jiTa9McrkQ80YgW
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-