General
-
Target
3d150ec6711d4a79575d649209057a87_JaffaCakes118
-
Size
80KB
-
Sample
240712-mz16hszgkl
-
MD5
3d150ec6711d4a79575d649209057a87
-
SHA1
78c05ce87edeeb5ac15ca07e0f9c40eafd016c8e
-
SHA256
f07a210287b0d56a3b9354d8ea60ec9c3bbee05c441f75a675eb0eebbde301c0
-
SHA512
212622f7aa776e6aee12fab1f1218a0d2208cbe1f70c0bc1413f0553632d2db1d822279ec240946c11fa6dacc9894084174efb9da96ce748d702e84672382300
-
SSDEEP
768:ev6nMfqvG4ZfrfsHc8ebdtF5EmpW/p/hxRSH9NxIkL9v/Q6sWz:evUZfAiZKmpSFhxRSHdL9bsi
Malware Config
Targets
-
-
Target
3d150ec6711d4a79575d649209057a87_JaffaCakes118
-
Size
80KB
-
MD5
3d150ec6711d4a79575d649209057a87
-
SHA1
78c05ce87edeeb5ac15ca07e0f9c40eafd016c8e
-
SHA256
f07a210287b0d56a3b9354d8ea60ec9c3bbee05c441f75a675eb0eebbde301c0
-
SHA512
212622f7aa776e6aee12fab1f1218a0d2208cbe1f70c0bc1413f0553632d2db1d822279ec240946c11fa6dacc9894084174efb9da96ce748d702e84672382300
-
SSDEEP
768:ev6nMfqvG4ZfrfsHc8ebdtF5EmpW/p/hxRSH9NxIkL9v/Q6sWz:evUZfAiZKmpSFhxRSHdL9bsi
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-