General
-
Target
480cbb59a35498b669dff4b8c562ad38_JaffaCakes118
-
Size
260KB
-
Sample
240715-d6gwsayfpg
-
MD5
480cbb59a35498b669dff4b8c562ad38
-
SHA1
0a4ed353915af7e6f0b38ca993ce23011faf2301
-
SHA256
f2e7c8906ba4b3d2ab753041521486013c1c77ade7d452aafe0fe2a0ba268da1
-
SHA512
2109c61c212114b4496e2ca28a6cf39d8b6a80b2c0c77dfb6366ad2c1c74d9931e8fd3a8504f08ca420dfb2a646bec7c24578a63e384bd319552cf0bf4e6d498
-
SSDEEP
6144:8dwxrVG3zzyXcM9ZoxtoFIZ93Cv8A/DPPiZiKo:7IzzyXcM9ZoxtoFIZ93Cv8A/DXqo
Malware Config
Targets
-
-
Target
480cbb59a35498b669dff4b8c562ad38_JaffaCakes118
-
Size
260KB
-
MD5
480cbb59a35498b669dff4b8c562ad38
-
SHA1
0a4ed353915af7e6f0b38ca993ce23011faf2301
-
SHA256
f2e7c8906ba4b3d2ab753041521486013c1c77ade7d452aafe0fe2a0ba268da1
-
SHA512
2109c61c212114b4496e2ca28a6cf39d8b6a80b2c0c77dfb6366ad2c1c74d9931e8fd3a8504f08ca420dfb2a646bec7c24578a63e384bd319552cf0bf4e6d498
-
SSDEEP
6144:8dwxrVG3zzyXcM9ZoxtoFIZ93Cv8A/DPPiZiKo:7IzzyXcM9ZoxtoFIZ93Cv8A/DXqo
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-