General
-
Target
abf90e447b132c93835b94a93e742c09_JaffaCakes118
-
Size
299KB
-
Sample
240819-wcgm2axend
-
MD5
abf90e447b132c93835b94a93e742c09
-
SHA1
5afeeff954be5c0b2022d31a35d112b60754fb1f
-
SHA256
9e701297efe2f32707600ba0a444ef5676978302c06e148b6a1a3ad57f4bb3e4
-
SHA512
64309666392233437e37776679fd801912e2b8446e349e1bb336741316e18f422d86efd4ee0bfc0cda2641d5e104d5997f97cfd3fb276c10f7e7b2bc824ad082
-
SSDEEP
6144:rwrEt7ZibM73Be4lYg8gBcMITD0dCb2dO5EkXaad1/IuW/RQtleZF6e+0z:KX473Be4lYg8dBB5n51wTQtWwe7
Malware Config
Targets
-
-
Target
abf90e447b132c93835b94a93e742c09_JaffaCakes118
-
Size
299KB
-
MD5
abf90e447b132c93835b94a93e742c09
-
SHA1
5afeeff954be5c0b2022d31a35d112b60754fb1f
-
SHA256
9e701297efe2f32707600ba0a444ef5676978302c06e148b6a1a3ad57f4bb3e4
-
SHA512
64309666392233437e37776679fd801912e2b8446e349e1bb336741316e18f422d86efd4ee0bfc0cda2641d5e104d5997f97cfd3fb276c10f7e7b2bc824ad082
-
SSDEEP
6144:rwrEt7ZibM73Be4lYg8gBcMITD0dCb2dO5EkXaad1/IuW/RQtleZF6e+0z:KX473Be4lYg8dBB5n51wTQtWwe7
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-