General
-
Target
6c63c54645c38c274e0557660c37632b_JaffaCakes118
-
Size
93KB
-
Sample
240724-xfgyms1fnn
-
MD5
6c63c54645c38c274e0557660c37632b
-
SHA1
61bc9731af9167b6da50345dcdd3611d2e06163f
-
SHA256
9a939960eafa5047f72c8888b7a9cd4f4562f77864e2d758bed9686decdbb472
-
SHA512
5db55f0159f2073de2d3944f3b1b43df41734fb1ad92f9601b248447b1eb975bccdb1121c514c8f674242c45343a3e67f39d53c8589ed56b1ac826da4dfbdd6a
-
SSDEEP
1536:JxqjQ+P04wsmJCI4MZZC81IXFF/Rz0c/++WEWt2oIsGCJs:sr85Ce77uHpznG+W0pC2
Behavioral task
behavioral1
Sample
6c63c54645c38c274e0557660c37632b_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
6c63c54645c38c274e0557660c37632b_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
6c63c54645c38c274e0557660c37632b_JaffaCakes118
-
Size
93KB
-
MD5
6c63c54645c38c274e0557660c37632b
-
SHA1
61bc9731af9167b6da50345dcdd3611d2e06163f
-
SHA256
9a939960eafa5047f72c8888b7a9cd4f4562f77864e2d758bed9686decdbb472
-
SHA512
5db55f0159f2073de2d3944f3b1b43df41734fb1ad92f9601b248447b1eb975bccdb1121c514c8f674242c45343a3e67f39d53c8589ed56b1ac826da4dfbdd6a
-
SSDEEP
1536:JxqjQ+P04wsmJCI4MZZC81IXFF/Rz0c/++WEWt2oIsGCJs:sr85Ce77uHpznG+W0pC2
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-