General
-
Target
a2c260b53c5fc518b66bacc793b562d6_JaffaCakes118
-
Size
85KB
-
Sample
240817-qzq74a1ern
-
MD5
a2c260b53c5fc518b66bacc793b562d6
-
SHA1
bd7d7d87fd4ba022f1b813d672fd6b92e684a0ec
-
SHA256
2a9a9ae73a44d36201bc9409364f860dd7bcc2005a3e770afc3d32395c8c1045
-
SHA512
f46afc02a5cdd78d6e6019431bab830f786a530c76fa4b7f7d667854bafa024b8f00df7e47145419931886c42aa44b2285cea22f52aa320de9b825eb269cd14f
-
SSDEEP
1536:LvNlpCGhj7AQYMcU8WElTjQ9hx10mCTuIZg8Qo5SMlhD6nykb4tQwReCYRr+8MRe:J3CSjBYLU8DgDrYB/QFKGykb7L+WT
Malware Config
Targets
-
-
Target
a2c260b53c5fc518b66bacc793b562d6_JaffaCakes118
-
Size
85KB
-
MD5
a2c260b53c5fc518b66bacc793b562d6
-
SHA1
bd7d7d87fd4ba022f1b813d672fd6b92e684a0ec
-
SHA256
2a9a9ae73a44d36201bc9409364f860dd7bcc2005a3e770afc3d32395c8c1045
-
SHA512
f46afc02a5cdd78d6e6019431bab830f786a530c76fa4b7f7d667854bafa024b8f00df7e47145419931886c42aa44b2285cea22f52aa320de9b825eb269cd14f
-
SSDEEP
1536:LvNlpCGhj7AQYMcU8WElTjQ9hx10mCTuIZg8Qo5SMlhD6nykb4tQwReCYRr+8MRe:J3CSjBYLU8DgDrYB/QFKGykb7L+WT
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Adds Run key to start application
-
Indicator Removal: File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity.
-