General
-
Target
3d81f8e46196174be71478be416c761e_JaffaCakes118
-
Size
1.1MB
-
Sample
240712-qd4ajaxbkd
-
MD5
3d81f8e46196174be71478be416c761e
-
SHA1
56148645996e4d3c930351a84cf1c1d7131766d6
-
SHA256
e50c36647c0210664490fb3a77d093dc6addc44aa27e40234eb43a5e6fee0bbe
-
SHA512
9dc310c3a350dc1981d4b52f35caeaeeadedff63462ea1d78a0ff65d3edd4f2bda72b21eca9e0aa813a7b7cac0d7215ae288f9562509fa19116d28a7618043bd
-
SSDEEP
24576:QXELkiAQ3+8ngBGJ57cXi3LeSIPCljWXyZhVHu6kVT2nE0ytcOTEQI+xU:wCkiAQOF0cXi3CnPClSUhN8ViOTEQTxU
Malware Config
Targets
-
-
Target
3d81f8e46196174be71478be416c761e_JaffaCakes118
-
Size
1.1MB
-
MD5
3d81f8e46196174be71478be416c761e
-
SHA1
56148645996e4d3c930351a84cf1c1d7131766d6
-
SHA256
e50c36647c0210664490fb3a77d093dc6addc44aa27e40234eb43a5e6fee0bbe
-
SHA512
9dc310c3a350dc1981d4b52f35caeaeeadedff63462ea1d78a0ff65d3edd4f2bda72b21eca9e0aa813a7b7cac0d7215ae288f9562509fa19116d28a7618043bd
-
SSDEEP
24576:QXELkiAQ3+8ngBGJ57cXi3LeSIPCljWXyZhVHu6kVT2nE0ytcOTEQI+xU:wCkiAQOF0cXi3CnPClSUhN8ViOTEQTxU
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-