General
-
Target
4065cdd35d8cc502cb9b0856db009a90_JaffaCakes118
-
Size
396KB
-
Sample
240713-gbslkszfme
-
MD5
4065cdd35d8cc502cb9b0856db009a90
-
SHA1
c873d262735c1f9925194ee2b22e5dd2a18fccdc
-
SHA256
d280b0c7d78cdbdc0b8553fe2cfe1556ed680c0e6b4211bb6fb68832b8a3f380
-
SHA512
96b4782bd496cdb41342407f3d2672d96e5dc3728998f2a50181c0256312fe662648296de00cf843b18573cc8ad1a4754e61da0fe9a042b385e2aa930bc78dbb
-
SSDEEP
6144:Tjw86qZGlBzFWYSTnEiEcVc2vKx7TCNVq1i4Upx0DKHE2ViGuPizZrpRf3WO/fwW:T886OGTpWYSTnEg/vGgEKHFgGuarpX
Malware Config
Targets
-
-
Target
4065cdd35d8cc502cb9b0856db009a90_JaffaCakes118
-
Size
396KB
-
MD5
4065cdd35d8cc502cb9b0856db009a90
-
SHA1
c873d262735c1f9925194ee2b22e5dd2a18fccdc
-
SHA256
d280b0c7d78cdbdc0b8553fe2cfe1556ed680c0e6b4211bb6fb68832b8a3f380
-
SHA512
96b4782bd496cdb41342407f3d2672d96e5dc3728998f2a50181c0256312fe662648296de00cf843b18573cc8ad1a4754e61da0fe9a042b385e2aa930bc78dbb
-
SSDEEP
6144:Tjw86qZGlBzFWYSTnEiEcVc2vKx7TCNVq1i4Upx0DKHE2ViGuPizZrpRf3WO/fwW:T886OGTpWYSTnEg/vGgEKHFgGuarpX
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-