General
-
Target
43c5a1a9e2ba65aa7b33abd20e99f5e0_JaffaCakes118
-
Size
3.0MB
-
Sample
240714-akl2ts1gkr
-
MD5
43c5a1a9e2ba65aa7b33abd20e99f5e0
-
SHA1
4c60e4f36b169f198fe4bfc348b3328def4286e6
-
SHA256
cd3293b4ccce02372dbd65710fe524dce0fda356df73938fbda2b4e2d22e9f70
-
SHA512
b9d563232720440c2370a8d54ad1c90230e33c6d44ecff0f59d8f000cc8de361124ea46d17f7b76b3fe20f2602668ad3414a4276b2a5498802bd10de73fcd42b
-
SSDEEP
49152:SgCh1LGumhuW+5S0z0pEhd/l0mWKp719Qq3yobleQD80gboI5/4X0W0z0pEhd/la:HCPSpED/ppLh3ScE4X0ypED/pe
Malware Config
Targets
-
-
Target
43c5a1a9e2ba65aa7b33abd20e99f5e0_JaffaCakes118
-
Size
3.0MB
-
MD5
43c5a1a9e2ba65aa7b33abd20e99f5e0
-
SHA1
4c60e4f36b169f198fe4bfc348b3328def4286e6
-
SHA256
cd3293b4ccce02372dbd65710fe524dce0fda356df73938fbda2b4e2d22e9f70
-
SHA512
b9d563232720440c2370a8d54ad1c90230e33c6d44ecff0f59d8f000cc8de361124ea46d17f7b76b3fe20f2602668ad3414a4276b2a5498802bd10de73fcd42b
-
SSDEEP
49152:SgCh1LGumhuW+5S0z0pEhd/l0mWKp719Qq3yobleQD80gboI5/4X0W0z0pEhd/la:HCPSpED/ppLh3ScE4X0ypED/pe
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks whether UAC is enabled
-
Drops file in System32 directory
-