General
-
Target
3fcdda9e4d306fe0369d5f2a3e38025b_JaffaCakes118
-
Size
248KB
-
Sample
240713-crrl1atepc
-
MD5
3fcdda9e4d306fe0369d5f2a3e38025b
-
SHA1
3edf4fa6404fddb697972fda88fa7969578d9ca9
-
SHA256
57b0a40238c46fbc325d2a7e8d21d42677e133a475df4873067e9b6f5baeff43
-
SHA512
5035f62e24fa2d6e172d2fcba8a877b964aa06efeb68a5190b2a7413cfd721c3a44e2350ee05036ebf055ac06aa0f193841a2441cabe484389dd16c900234eed
-
SSDEEP
6144:TweVQEyyUf9dgAVRKlqBiErIsKnPmb7/jWal+FfAje+5/RxoOsutOSD/uP39RWyJ:TwRyUf9DRKlqgErIsKnPmb7/jWa1e+5T
Malware Config
Targets
-
-
Target
3fcdda9e4d306fe0369d5f2a3e38025b_JaffaCakes118
-
Size
248KB
-
MD5
3fcdda9e4d306fe0369d5f2a3e38025b
-
SHA1
3edf4fa6404fddb697972fda88fa7969578d9ca9
-
SHA256
57b0a40238c46fbc325d2a7e8d21d42677e133a475df4873067e9b6f5baeff43
-
SHA512
5035f62e24fa2d6e172d2fcba8a877b964aa06efeb68a5190b2a7413cfd721c3a44e2350ee05036ebf055ac06aa0f193841a2441cabe484389dd16c900234eed
-
SSDEEP
6144:TweVQEyyUf9dgAVRKlqBiErIsKnPmb7/jWal+FfAje+5/RxoOsutOSD/uP39RWyJ:TwRyUf9DRKlqgErIsKnPmb7/jWa1e+5T
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-