General
-
Target
680d527d6114b8983f60be752e37f4b9_JaffaCakes118
-
Size
467KB
-
Sample
240723-sd8alawcrn
-
MD5
680d527d6114b8983f60be752e37f4b9
-
SHA1
212cf80cfb92c89dfe06db8cd20c171056ba1caf
-
SHA256
44a032ad612c0cfcff474a622d17a02e3ac6242e31bf172a458074df1b8a17fb
-
SHA512
d10d49b80856c0867a5e1ce6df23e4e5cf44f096791771185cd2f33b2dac47d99ed148fb3d700cfd5aa73d463ac575e226b2ceb9949ddfd4019f64598ad08bcc
-
SSDEEP
12288:93CtSokfFGUMKwlTIU/b37dJ75WEe+eKTxB6mY:9x9GzHlTv/b35tecFB69
Behavioral task
behavioral1
Sample
680d527d6114b8983f60be752e37f4b9_JaffaCakes118.exe
Resource
win7-20240704-en
Malware Config
Extracted
urelas
121.88.5.183
121.88.5.184
Targets
-
-
Target
680d527d6114b8983f60be752e37f4b9_JaffaCakes118
-
Size
467KB
-
MD5
680d527d6114b8983f60be752e37f4b9
-
SHA1
212cf80cfb92c89dfe06db8cd20c171056ba1caf
-
SHA256
44a032ad612c0cfcff474a622d17a02e3ac6242e31bf172a458074df1b8a17fb
-
SHA512
d10d49b80856c0867a5e1ce6df23e4e5cf44f096791771185cd2f33b2dac47d99ed148fb3d700cfd5aa73d463ac575e226b2ceb9949ddfd4019f64598ad08bcc
-
SSDEEP
12288:93CtSokfFGUMKwlTIU/b37dJ75WEe+eKTxB6mY:9x9GzHlTv/b35tecFB69
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-