General
-
Target
6900d716b848ea9ce69b4297598bc628_JaffaCakes118
-
Size
449KB
-
Sample
240723-1bngeazbrj
-
MD5
6900d716b848ea9ce69b4297598bc628
-
SHA1
ebc6be28550739e1d5899de46379e7ea2a88b427
-
SHA256
58888f6f6a0d9bd41148143e8c84d3a5fee85213df3767c9c17d19ad3e2dc488
-
SHA512
82bcabb5e0bdc0ae693fa78303191364716c2b0eb986c0907e81eb81e024df5aaaab5ae41604bc606d3487862c60f90dd243f4b193d69618df150e0b316e8169
-
SSDEEP
6144:CEK25f5ySIcWLsxIIW4DYM6SB6v+qLnAzYmhwrxcvkzmSOpdFTO:CMpASIcWYx2U6hAJQnV
Behavioral task
behavioral1
Sample
6900d716b848ea9ce69b4297598bc628_JaffaCakes118.exe
Resource
win7-20240708-en
Malware Config
Extracted
urelas
218.54.31.165
218.54.31.226
Targets
-
-
Target
6900d716b848ea9ce69b4297598bc628_JaffaCakes118
-
Size
449KB
-
MD5
6900d716b848ea9ce69b4297598bc628
-
SHA1
ebc6be28550739e1d5899de46379e7ea2a88b427
-
SHA256
58888f6f6a0d9bd41148143e8c84d3a5fee85213df3767c9c17d19ad3e2dc488
-
SHA512
82bcabb5e0bdc0ae693fa78303191364716c2b0eb986c0907e81eb81e024df5aaaab5ae41604bc606d3487862c60f90dd243f4b193d69618df150e0b316e8169
-
SSDEEP
6144:CEK25f5ySIcWLsxIIW4DYM6SB6v+qLnAzYmhwrxcvkzmSOpdFTO:CMpASIcWYx2U6hAJQnV
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-