General
-
Target
8a58237931a3e9d70c2611916c5529f9_JaffaCakes118
-
Size
212KB
-
Sample
240811-pkhfzayhkm
-
MD5
8a58237931a3e9d70c2611916c5529f9
-
SHA1
e193ef8c93ee97049199a1cd6e1fa2b55d63b83b
-
SHA256
10751a3d25281681a875d6c54971d9846b58e86f922f42b0c4995d4c6ec766a8
-
SHA512
d3cd2dd910f8786ea98a6490de3314495b7484382cfa6717193798322f70893166528320bbae93cf9f68890dfe36bb35bc48adbf6a88906be18672ef3fdacc7f
-
SSDEEP
3072:/j7QKrmC/B6DmBvbjjqve4z4PiL2HUpOASklovCIlwNw:/4KrmH6vbSveP10p7W3lwu
Malware Config
Targets
-
-
Target
8a58237931a3e9d70c2611916c5529f9_JaffaCakes118
-
Size
212KB
-
MD5
8a58237931a3e9d70c2611916c5529f9
-
SHA1
e193ef8c93ee97049199a1cd6e1fa2b55d63b83b
-
SHA256
10751a3d25281681a875d6c54971d9846b58e86f922f42b0c4995d4c6ec766a8
-
SHA512
d3cd2dd910f8786ea98a6490de3314495b7484382cfa6717193798322f70893166528320bbae93cf9f68890dfe36bb35bc48adbf6a88906be18672ef3fdacc7f
-
SSDEEP
3072:/j7QKrmC/B6DmBvbjjqve4z4PiL2HUpOASklovCIlwNw:/4KrmH6vbSveP10p7W3lwu
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Adds Run key to start application
-
Network Share Discovery
Attempt to gather information on host network.
-