General
-
Target
8d8b0fc2991f1368753eba5637591605_JaffaCakes118
-
Size
104KB
-
Sample
240812-gfsr5sxgnr
-
MD5
8d8b0fc2991f1368753eba5637591605
-
SHA1
483c6baaa2530d7e553238a8d869c72f49cafa73
-
SHA256
10595feb4221688af601ccc185146d9a04f4fa837067289bb4c52dc797c54184
-
SHA512
fee7c55e90904f7769d9831f534d35ac97f25907c88fd2597c5e1e253b93086b02af643385ac21232b131e9fbc91053fbbab8c5f54d3b8a82cd4bc9324a85192
-
SSDEEP
1536:JdCQyuHUxu1Oz1LcYN2sknj36nvALDfcaTEhZP35FafD/RjRopFvI/FYLwNIc8lj:JdCru8uMzDC2aJDeEsXcXPBQA6S4Q6
Malware Config
Targets
-
-
Target
8d8b0fc2991f1368753eba5637591605_JaffaCakes118
-
Size
104KB
-
MD5
8d8b0fc2991f1368753eba5637591605
-
SHA1
483c6baaa2530d7e553238a8d869c72f49cafa73
-
SHA256
10595feb4221688af601ccc185146d9a04f4fa837067289bb4c52dc797c54184
-
SHA512
fee7c55e90904f7769d9831f534d35ac97f25907c88fd2597c5e1e253b93086b02af643385ac21232b131e9fbc91053fbbab8c5f54d3b8a82cd4bc9324a85192
-
SSDEEP
1536:JdCQyuHUxu1Oz1LcYN2sknj36nvALDfcaTEhZP35FafD/RjRopFvI/FYLwNIc8lj:JdCru8uMzDC2aJDeEsXcXPBQA6S4Q6
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Adds Run key to start application
-
Drops file in System32 directory
-