General
-
Target
6267d5e81ea5d3350baa32ce30d12b21_JaffaCakes118
-
Size
148KB
-
Sample
240722-jvy9kswfqf
-
MD5
6267d5e81ea5d3350baa32ce30d12b21
-
SHA1
c23ae7cecbed53b85f9693b6eae94630f96461e9
-
SHA256
d4a91f2a077139865a7f1a47547017858720bcc3c1c34f02fffa0ebd86e20942
-
SHA512
bc6483d78e53bf95738ed3d91cd6d00539cd7736f3fc29974a843a3e3da49d1f5493cb7ff908a69d9eb4f67a09e36474e62a45c0297534d10b1057a2230b1265
-
SSDEEP
3072:gdo+ogRs59j/pvkqBBac+RAGq1bg7Yfgst6OzOS79pgRZkhQJAOAZ4oQZiECH:OoFbj/pvkqBBac+RAGq1bZHtrzOS77k6
Malware Config
Targets
-
-
Target
6267d5e81ea5d3350baa32ce30d12b21_JaffaCakes118
-
Size
148KB
-
MD5
6267d5e81ea5d3350baa32ce30d12b21
-
SHA1
c23ae7cecbed53b85f9693b6eae94630f96461e9
-
SHA256
d4a91f2a077139865a7f1a47547017858720bcc3c1c34f02fffa0ebd86e20942
-
SHA512
bc6483d78e53bf95738ed3d91cd6d00539cd7736f3fc29974a843a3e3da49d1f5493cb7ff908a69d9eb4f67a09e36474e62a45c0297534d10b1057a2230b1265
-
SSDEEP
3072:gdo+ogRs59j/pvkqBBac+RAGq1bg7Yfgst6OzOS79pgRZkhQJAOAZ4oQZiECH:OoFbj/pvkqBBac+RAGq1bZHtrzOS77k6
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-