General
-
Target
5c9c02e812fa6ed887d80c3081fd2832_JaffaCakes118
-
Size
88KB
-
Sample
240719-ta8mmaydmp
-
MD5
5c9c02e812fa6ed887d80c3081fd2832
-
SHA1
e5918f1872b3c2af4939ce1c431bcdb6b6a8fb0c
-
SHA256
d73bfdd696ab7791169c97a96a61594777340d2382d944cf01a957afb4889be8
-
SHA512
139935c7188d6764b86d2dd0079f07090f56360c631021b15d6a11d96934771facdfbacf8d16c4906b79593a462fceafdd24d4d396b411353ca5a7e7cda6f196
-
SSDEEP
768:7DFIfM+5rddaqnObOasGEwU8Z1Rbe2kjEQJQ1H7a8zFkzqcw+Qlye:1IE+5eiCU8Z1QjEQJecw+Qlye
Malware Config
Targets
-
-
Target
5c9c02e812fa6ed887d80c3081fd2832_JaffaCakes118
-
Size
88KB
-
MD5
5c9c02e812fa6ed887d80c3081fd2832
-
SHA1
e5918f1872b3c2af4939ce1c431bcdb6b6a8fb0c
-
SHA256
d73bfdd696ab7791169c97a96a61594777340d2382d944cf01a957afb4889be8
-
SHA512
139935c7188d6764b86d2dd0079f07090f56360c631021b15d6a11d96934771facdfbacf8d16c4906b79593a462fceafdd24d4d396b411353ca5a7e7cda6f196
-
SSDEEP
768:7DFIfM+5rddaqnObOasGEwU8Z1Rbe2kjEQJQ1H7a8zFkzqcw+Qlye:1IE+5eiCU8Z1QjEQJecw+Qlye
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-