General
-
Target
5dce134a01b58cb4922e2b3c52c44b73_JaffaCakes118
-
Size
60KB
-
Sample
240719-1n9keaveqf
-
MD5
5dce134a01b58cb4922e2b3c52c44b73
-
SHA1
44be69220769482b13afb59f903b31755d5754f2
-
SHA256
1f220c2529249979314ac3b8663daf975d21346391bd5bb2264e0aec628f57b7
-
SHA512
d1407f03bf4489d1064f631a1a2e73c6bec019f16ed6ccfbee448c1c9a0d5deb524f60b8ae9b1c0ca2603c702d5166d7bdd6a1e29da3e6cca76c525d822d825a
-
SSDEEP
768:3BZX+Nzp4mjNx4Ss4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:3Pdc2inuWdB9r8YXPJY2BmscY
Malware Config
Targets
-
-
Target
5dce134a01b58cb4922e2b3c52c44b73_JaffaCakes118
-
Size
60KB
-
MD5
5dce134a01b58cb4922e2b3c52c44b73
-
SHA1
44be69220769482b13afb59f903b31755d5754f2
-
SHA256
1f220c2529249979314ac3b8663daf975d21346391bd5bb2264e0aec628f57b7
-
SHA512
d1407f03bf4489d1064f631a1a2e73c6bec019f16ed6ccfbee448c1c9a0d5deb524f60b8ae9b1c0ca2603c702d5166d7bdd6a1e29da3e6cca76c525d822d825a
-
SSDEEP
768:3BZX+Nzp4mjNx4Ss4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:3Pdc2inuWdB9r8YXPJY2BmscY
Score8/10-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-