General
-
Target
492d9cc66ae6db498bc5d32eb873a5fd_JaffaCakes118
-
Size
188KB
-
Sample
240715-la5lzayhjj
-
MD5
492d9cc66ae6db498bc5d32eb873a5fd
-
SHA1
65b008dd7f628db0035f66fb81c8db0277a60d74
-
SHA256
d59adcdda185c9cdb0fb87b05ae9ce11f39d3f37da9669ff26c4aa03e8b85903
-
SHA512
db3e88e0014b2c428a348a1e08edcb14b7046241e7fcfb70ac51d5ddce201cd4f1020bc3c2a1f2f958589fddb0384b7a83641254fa8ae70240f693f6b8516c72
-
SSDEEP
3072:O7fyAuJROnFx5pY0hrDGILpMI0M/Dk4KrfXRdjnbk9bOlezfQnFTTvprw1WFSTrm:O76AbCKh0tzXRdjbk9bbyvprww6OF
Malware Config
Targets
-
-
Target
492d9cc66ae6db498bc5d32eb873a5fd_JaffaCakes118
-
Size
188KB
-
MD5
492d9cc66ae6db498bc5d32eb873a5fd
-
SHA1
65b008dd7f628db0035f66fb81c8db0277a60d74
-
SHA256
d59adcdda185c9cdb0fb87b05ae9ce11f39d3f37da9669ff26c4aa03e8b85903
-
SHA512
db3e88e0014b2c428a348a1e08edcb14b7046241e7fcfb70ac51d5ddce201cd4f1020bc3c2a1f2f958589fddb0384b7a83641254fa8ae70240f693f6b8516c72
-
SSDEEP
3072:O7fyAuJROnFx5pY0hrDGILpMI0M/Dk4KrfXRdjnbk9bOlezfQnFTTvprw1WFSTrm:O76AbCKh0tzXRdjbk9bbyvprww6OF
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-