General
-
Target
421ac6554a7bd07e21ef960b926d89d6_JaffaCakes118
-
Size
172KB
-
Sample
240713-r19aqsxamh
-
MD5
421ac6554a7bd07e21ef960b926d89d6
-
SHA1
8496b05d9900ee9c76727d1f647c3662229467c4
-
SHA256
84d6f11a0031aaa3e59929a2b5b1761522b2a2aebaecf3e0aa8c7de90f422c22
-
SHA512
c6ba16175bfdda1cb4e8ef5143c6e29a1da5786081074cc93c22489e57d4e7e49275603a8171fcf3027e49673ae45ff47f531947b64c0d8df8dc8a5bd5f47c2f
-
SSDEEP
768:xRIN2LwpOA9YP9/OdwiuvxKH5esBk/WRUDiyIdVngJ9N/NRf/SxMA4RvmW5cy9lu:xR1qYP9LHTJ9VNRXSxMA4p5cy
Malware Config
Targets
-
-
Target
421ac6554a7bd07e21ef960b926d89d6_JaffaCakes118
-
Size
172KB
-
MD5
421ac6554a7bd07e21ef960b926d89d6
-
SHA1
8496b05d9900ee9c76727d1f647c3662229467c4
-
SHA256
84d6f11a0031aaa3e59929a2b5b1761522b2a2aebaecf3e0aa8c7de90f422c22
-
SHA512
c6ba16175bfdda1cb4e8ef5143c6e29a1da5786081074cc93c22489e57d4e7e49275603a8171fcf3027e49673ae45ff47f531947b64c0d8df8dc8a5bd5f47c2f
-
SSDEEP
768:xRIN2LwpOA9YP9/OdwiuvxKH5esBk/WRUDiyIdVngJ9N/NRf/SxMA4RvmW5cy9lu:xR1qYP9LHTJ9VNRXSxMA4p5cy
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-