General
-
Target
6f5340d4a4186ae158e58f3b5eae9eed_JaffaCakes118
-
Size
20KB
-
Sample
240725-nac8tsvgmk
-
MD5
6f5340d4a4186ae158e58f3b5eae9eed
-
SHA1
b5c755dc6be06ada496c4f308585bc9c95ecdc5f
-
SHA256
1a2a3d4730248c4dbe9517690b64941ff8c3222d2382a78b052c7ecc15172fab
-
SHA512
55a8fdbfe95b4ca680ca332f796b13fd3e76e23e205aa866dc25b74d3801a16896c986b10df8d27693dacb16b2115390a9549994c103d7766ec27057c61f2bd8
-
SSDEEP
384:rLzz+xES1KQ31KMP1KeRP630xVoj0+/aP3K/bLTCibs9WdY2AqokUpze:/WJKeK2KXEMiPKi9CAxkUpS
Malware Config
Targets
-
-
Target
6f5340d4a4186ae158e58f3b5eae9eed_JaffaCakes118
-
Size
20KB
-
MD5
6f5340d4a4186ae158e58f3b5eae9eed
-
SHA1
b5c755dc6be06ada496c4f308585bc9c95ecdc5f
-
SHA256
1a2a3d4730248c4dbe9517690b64941ff8c3222d2382a78b052c7ecc15172fab
-
SHA512
55a8fdbfe95b4ca680ca332f796b13fd3e76e23e205aa866dc25b74d3801a16896c986b10df8d27693dacb16b2115390a9549994c103d7766ec27057c61f2bd8
-
SSDEEP
384:rLzz+xES1KQ31KMP1KeRP630xVoj0+/aP3K/bLTCibs9WdY2AqokUpze:/WJKeK2KXEMiPKi9CAxkUpS
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-