General
-
Target
4751f00f78ba04a13c2d16fc4bc6a7ef_JaffaCakes118
-
Size
252KB
-
Sample
240714-3v5ada1aqh
-
MD5
4751f00f78ba04a13c2d16fc4bc6a7ef
-
SHA1
9c48a79a0e235d5135bd4d7835a912c6345d73a8
-
SHA256
6c797cf96e8fd76e65bb080298cb76871279d6fb2a20455f116ad60b50a06409
-
SHA512
2f2ee150b0aa0fde493c07aea0d5953fbc10d520a9569203c161447f9b831e6946092d0d091482c1ba624219fb41f18541091f7a969fbf9c9cb9dd85b7b591ee
-
SSDEEP
6144:DTxFiVGBngFg4S628gA/igGuncMkcH/AeKnvmb7/D26ppSgCbvfdTT:nrigBnga4S628dFncMkcHIeKnvmb7/DW
Malware Config
Targets
-
-
Target
4751f00f78ba04a13c2d16fc4bc6a7ef_JaffaCakes118
-
Size
252KB
-
MD5
4751f00f78ba04a13c2d16fc4bc6a7ef
-
SHA1
9c48a79a0e235d5135bd4d7835a912c6345d73a8
-
SHA256
6c797cf96e8fd76e65bb080298cb76871279d6fb2a20455f116ad60b50a06409
-
SHA512
2f2ee150b0aa0fde493c07aea0d5953fbc10d520a9569203c161447f9b831e6946092d0d091482c1ba624219fb41f18541091f7a969fbf9c9cb9dd85b7b591ee
-
SSDEEP
6144:DTxFiVGBngFg4S628gA/igGuncMkcH/AeKnvmb7/D26ppSgCbvfdTT:nrigBnga4S628dFncMkcHIeKnvmb7/DW
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-