General
-
Target
352f83ba1eaed8064ee7c365c474fafb_JaffaCakes118
-
Size
164KB
-
Sample
240710-r8nc8swemb
-
MD5
352f83ba1eaed8064ee7c365c474fafb
-
SHA1
dfe7f1f213e3a99feeb0d232c823000c7ff9c121
-
SHA256
bab4cecd6675ec4064746d982dcefe0827e626c50b170ef841c009f8f0bcf569
-
SHA512
8ddc3add2236819b1dab19b81f5e609244c365bd70df6a715005ce0ab28fa21c950b6efe89ac9fab21acf85492af0b8d028d3484c06eee2738e02efcbae4acda
-
SSDEEP
1536:fO2bUCAKF9gN72keUvYQKFUi4doJqaRQo9ioSlbfD4dDWRlWVRK8+h:doIqN7yw3zdoJbCo9mln4FLa
Malware Config
Targets
-
-
Target
352f83ba1eaed8064ee7c365c474fafb_JaffaCakes118
-
Size
164KB
-
MD5
352f83ba1eaed8064ee7c365c474fafb
-
SHA1
dfe7f1f213e3a99feeb0d232c823000c7ff9c121
-
SHA256
bab4cecd6675ec4064746d982dcefe0827e626c50b170ef841c009f8f0bcf569
-
SHA512
8ddc3add2236819b1dab19b81f5e609244c365bd70df6a715005ce0ab28fa21c950b6efe89ac9fab21acf85492af0b8d028d3484c06eee2738e02efcbae4acda
-
SSDEEP
1536:fO2bUCAKF9gN72keUvYQKFUi4doJqaRQo9ioSlbfD4dDWRlWVRK8+h:doIqN7yw3zdoJbCo9mln4FLa
Score8/10-
Sets file to hidden
Modifies file attributes to stop it showing in Explorer etc.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-