General
-
Target
472eb3be8e6c0d15195cf049330969c1_JaffaCakes118
-
Size
100KB
-
Sample
240714-25d1hawgrq
-
MD5
472eb3be8e6c0d15195cf049330969c1
-
SHA1
323885d84f3621a3baa0c290a9c697e2871b0cbb
-
SHA256
940ad490971cc567b7bac60d3bdc94c99eabda81df258d9f1e49af193bcc4fe3
-
SHA512
b07604762e5f0a4126a44f54595a8373819fc1790e5f38c9ec2aca0bc8636ea31337a1a8b0957bf6716d55ca8bc5ca6298d0762ffe62839829f6c6922bd09e4c
-
SSDEEP
1536:YOd8iAuismywsiBLw0wF9MGM9K/oKtNgCMbA1bL3N+NM5UfpNIjnZ9b:fC/KLOM5iCnPb
Malware Config
Targets
-
-
Target
472eb3be8e6c0d15195cf049330969c1_JaffaCakes118
-
Size
100KB
-
MD5
472eb3be8e6c0d15195cf049330969c1
-
SHA1
323885d84f3621a3baa0c290a9c697e2871b0cbb
-
SHA256
940ad490971cc567b7bac60d3bdc94c99eabda81df258d9f1e49af193bcc4fe3
-
SHA512
b07604762e5f0a4126a44f54595a8373819fc1790e5f38c9ec2aca0bc8636ea31337a1a8b0957bf6716d55ca8bc5ca6298d0762ffe62839829f6c6922bd09e4c
-
SSDEEP
1536:YOd8iAuismywsiBLw0wF9MGM9K/oKtNgCMbA1bL3N+NM5UfpNIjnZ9b:fC/KLOM5iCnPb
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-