General
-
Target
4b7f6980289eb51a9ee7fba4b3832dd7_JaffaCakes118
-
Size
124KB
-
Sample
240715-1et4cssgkh
-
MD5
4b7f6980289eb51a9ee7fba4b3832dd7
-
SHA1
795d98c80fafc8400f133f5f6cad25c49dade152
-
SHA256
b259b0bc0f1bbc43a2f9f794d094a0090b56b44dd20a2582c4ea29231829dd6f
-
SHA512
0c3b52707a54c40525e43b82665c6f237c1146dcbaa8f08e71c22e9f8612797d4907e1e9640e01f43efc5e63f9d5444df06da506773e109e4816182791323496
-
SSDEEP
1536:tIJ9pVABU0GgAYu0P1kNmwldCMhdu8KWP/nTn8nBP9Ve+NeG0h/x:49peBU0GgA892p
Malware Config
Targets
-
-
Target
4b7f6980289eb51a9ee7fba4b3832dd7_JaffaCakes118
-
Size
124KB
-
MD5
4b7f6980289eb51a9ee7fba4b3832dd7
-
SHA1
795d98c80fafc8400f133f5f6cad25c49dade152
-
SHA256
b259b0bc0f1bbc43a2f9f794d094a0090b56b44dd20a2582c4ea29231829dd6f
-
SHA512
0c3b52707a54c40525e43b82665c6f237c1146dcbaa8f08e71c22e9f8612797d4907e1e9640e01f43efc5e63f9d5444df06da506773e109e4816182791323496
-
SSDEEP
1536:tIJ9pVABU0GgAYu0P1kNmwldCMhdu8KWP/nTn8nBP9Ve+NeG0h/x:49peBU0GgA892p
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-