General
-
Target
96e15a83de5f8fb01d76ce478f1b92f3_JaffaCakes118
-
Size
60KB
-
Sample
240814-veqs2sxfqq
-
MD5
96e15a83de5f8fb01d76ce478f1b92f3
-
SHA1
af936560c3ad3b067d07ba27ef93a3df86d22b59
-
SHA256
c5d5c871ca73a88ae571bc7dcf7bd03083f7a0c396b2ec10448c95f969b1a2f0
-
SHA512
a16f766c7d868033276d33670684bd8ef3f378641c0e234883eaff346e4d40ea7981e5f5bfe92a1edae4151aaffbf6f40f82009361f647211e91a82294a9a78e
-
SSDEEP
768:nBZX+Nzp4mjNx4Ds4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:nPdc1inuWdB9r8YXPJY2BmscY
Malware Config
Targets
-
-
Target
96e15a83de5f8fb01d76ce478f1b92f3_JaffaCakes118
-
Size
60KB
-
MD5
96e15a83de5f8fb01d76ce478f1b92f3
-
SHA1
af936560c3ad3b067d07ba27ef93a3df86d22b59
-
SHA256
c5d5c871ca73a88ae571bc7dcf7bd03083f7a0c396b2ec10448c95f969b1a2f0
-
SHA512
a16f766c7d868033276d33670684bd8ef3f378641c0e234883eaff346e4d40ea7981e5f5bfe92a1edae4151aaffbf6f40f82009361f647211e91a82294a9a78e
-
SSDEEP
768:nBZX+Nzp4mjNx4Ds4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:nPdc1inuWdB9r8YXPJY2BmscY
Score8/10-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-