General
-
Target
5a56396b45f0d8501d87daa8cd425996_JaffaCakes118
-
Size
264KB
-
Sample
240719-eaqdqavbld
-
MD5
5a56396b45f0d8501d87daa8cd425996
-
SHA1
d24c157a032d2cba1e4c2ca6ea53c8a3c16d4988
-
SHA256
0296bfca8e537b1293a767a782a8e69c8b1c9ca066bfacc62d4240eafc1156ee
-
SHA512
09405836c748680980ae99c6ddd2c52de72a33718aa63fe0543779fa75d84ab3154993cd7e544b8167a8acf92bbdbf40a66f4eebc3a34b26e6e6c1a762bbb579
-
SSDEEP
3072:HwwQcqsOeP+2IDyG2pfr4GNLzECcKIvMBSYWunCvPQiwhjXH1WkaBx5/lvnjLYar:QwQ3sOem9Ic6OLynWunzXH1W9r
Malware Config
Targets
-
-
Target
5a56396b45f0d8501d87daa8cd425996_JaffaCakes118
-
Size
264KB
-
MD5
5a56396b45f0d8501d87daa8cd425996
-
SHA1
d24c157a032d2cba1e4c2ca6ea53c8a3c16d4988
-
SHA256
0296bfca8e537b1293a767a782a8e69c8b1c9ca066bfacc62d4240eafc1156ee
-
SHA512
09405836c748680980ae99c6ddd2c52de72a33718aa63fe0543779fa75d84ab3154993cd7e544b8167a8acf92bbdbf40a66f4eebc3a34b26e6e6c1a762bbb579
-
SSDEEP
3072:HwwQcqsOeP+2IDyG2pfr4GNLzECcKIvMBSYWunCvPQiwhjXH1WkaBx5/lvnjLYar:QwQ3sOem9Ic6OLynWunzXH1W9r
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-