General
-
Target
53b1b31f9e8dca712b28abf1ea90ed93_JaffaCakes118
-
Size
87KB
-
Sample
240717-tbmfsaxfkk
-
MD5
53b1b31f9e8dca712b28abf1ea90ed93
-
SHA1
742822dd9298416de24dbc9b8cd3e84714b1e0b5
-
SHA256
7f2760bd9b2cb70043f3241e6b5cf1ba5c665dd2190b33a676a9cb39a0292cc2
-
SHA512
b2d5e836040c1518e1dbecec1114cf0cd468aa6bbf912f61afe192b195624f38de6224b2c7e2b72078b1eaa7b10acdc1d3c109bb24341e9175e7e7a1e1f3ab4d
-
SSDEEP
1536:JxqjQ+P04wsmJCFECuNogtrORpMFCvJgZP1aEH:sr85CYmaORtEPgEH
Behavioral task
behavioral1
Sample
53b1b31f9e8dca712b28abf1ea90ed93_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
53b1b31f9e8dca712b28abf1ea90ed93_JaffaCakes118.exe
Resource
win10v2004-20240704-en
Malware Config
Targets
-
-
Target
53b1b31f9e8dca712b28abf1ea90ed93_JaffaCakes118
-
Size
87KB
-
MD5
53b1b31f9e8dca712b28abf1ea90ed93
-
SHA1
742822dd9298416de24dbc9b8cd3e84714b1e0b5
-
SHA256
7f2760bd9b2cb70043f3241e6b5cf1ba5c665dd2190b33a676a9cb39a0292cc2
-
SHA512
b2d5e836040c1518e1dbecec1114cf0cd468aa6bbf912f61afe192b195624f38de6224b2c7e2b72078b1eaa7b10acdc1d3c109bb24341e9175e7e7a1e1f3ab4d
-
SSDEEP
1536:JxqjQ+P04wsmJCFECuNogtrORpMFCvJgZP1aEH:sr85CYmaORtEPgEH
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-