General
-
Target
3b919c6d17f78f2ef41117b12eb256ef_JaffaCakes118
-
Size
220KB
-
Sample
240712-b98skawejc
-
MD5
3b919c6d17f78f2ef41117b12eb256ef
-
SHA1
a9b0aace3ca67e2ff9576619af0ceabb386c5067
-
SHA256
e77ece6f8325ce08ae896e2ddc205fdce7f28135abab2fe25ae619adc58becb7
-
SHA512
8ea21fe6b5aea3757db0f9da217856080dedba2659ff8794c8ff4e5ebcc17ddd8847d0df71f6bec5052e34f3c7e6896e72f663dd3fe678c0b5cce6baba7225fc
-
SSDEEP
3072:DqOuIkr8YUL4qx9RIHgil3UuhSa3U3dD8d6Oy+MIrnj3J+NRq:WOJko15x9SHVeOj0o
Malware Config
Targets
-
-
Target
3b919c6d17f78f2ef41117b12eb256ef_JaffaCakes118
-
Size
220KB
-
MD5
3b919c6d17f78f2ef41117b12eb256ef
-
SHA1
a9b0aace3ca67e2ff9576619af0ceabb386c5067
-
SHA256
e77ece6f8325ce08ae896e2ddc205fdce7f28135abab2fe25ae619adc58becb7
-
SHA512
8ea21fe6b5aea3757db0f9da217856080dedba2659ff8794c8ff4e5ebcc17ddd8847d0df71f6bec5052e34f3c7e6896e72f663dd3fe678c0b5cce6baba7225fc
-
SSDEEP
3072:DqOuIkr8YUL4qx9RIHgil3UuhSa3U3dD8d6Oy+MIrnj3J+NRq:WOJko15x9SHVeOj0o
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-