General
-
Target
627e11a18e74fe101c44ae3b18d3cd32_JaffaCakes118
-
Size
132KB
-
Sample
240722-karjnsxdqg
-
MD5
627e11a18e74fe101c44ae3b18d3cd32
-
SHA1
c1265eb8f1ae487cf7d42241912661ad1e9b7df2
-
SHA256
ed44e1cee9b8d3de2104749446de251846372d8557aab889d5b26dae7fe46057
-
SHA512
63d0f3ea6747a3e9ddef448b42a617e86eec21e688b74ef53a374c22edf67178a34bea8409164cecb9dd996d4500c0f00509920f7353074a9d1f65d2915c0956
-
SSDEEP
1536:QY1ZniuX3pIIKZrDJxtJu9uRiIelOQ212IE6jDSUaWpsE4BjP4YTyrhQHy4ktXk:dZ7XM89uRvsW6EqyrhayXk
Malware Config
Targets
-
-
Target
627e11a18e74fe101c44ae3b18d3cd32_JaffaCakes118
-
Size
132KB
-
MD5
627e11a18e74fe101c44ae3b18d3cd32
-
SHA1
c1265eb8f1ae487cf7d42241912661ad1e9b7df2
-
SHA256
ed44e1cee9b8d3de2104749446de251846372d8557aab889d5b26dae7fe46057
-
SHA512
63d0f3ea6747a3e9ddef448b42a617e86eec21e688b74ef53a374c22edf67178a34bea8409164cecb9dd996d4500c0f00509920f7353074a9d1f65d2915c0956
-
SSDEEP
1536:QY1ZniuX3pIIKZrDJxtJu9uRiIelOQ212IE6jDSUaWpsE4BjP4YTyrhQHy4ktXk:dZ7XM89uRvsW6EqyrhayXk
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-