General
-
Target
ba62537c3a1cb97d0f5d3a1f96cf0fb2_JaffaCakes118
-
Size
56KB
-
Sample
240823-e74mlsxhnj
-
MD5
ba62537c3a1cb97d0f5d3a1f96cf0fb2
-
SHA1
c3f3a8ba53c6fab28ec2d8e39d8b5fb64e26f265
-
SHA256
160a478bf665146d6ae924b1e9959094048e1ba4a979699c253f3ad3ddba4582
-
SHA512
538da2032fc9be18c5f9a2e0b4823511d8bbd6263d4048f167cc659d1aef5f607e7bb72c71827aeb4c3cecaf5bcd899789c3ffc44c34ce0d54d0f4f3706cfb8d
-
SSDEEP
1536:e1VG5RLqLGenxomC4g2hCxEnuxQkem7l06RXiu:mGnAh6lVpQrmJTyu
Malware Config
Targets
-
-
Target
ba62537c3a1cb97d0f5d3a1f96cf0fb2_JaffaCakes118
-
Size
56KB
-
MD5
ba62537c3a1cb97d0f5d3a1f96cf0fb2
-
SHA1
c3f3a8ba53c6fab28ec2d8e39d8b5fb64e26f265
-
SHA256
160a478bf665146d6ae924b1e9959094048e1ba4a979699c253f3ad3ddba4582
-
SHA512
538da2032fc9be18c5f9a2e0b4823511d8bbd6263d4048f167cc659d1aef5f607e7bb72c71827aeb4c3cecaf5bcd899789c3ffc44c34ce0d54d0f4f3706cfb8d
-
SSDEEP
1536:e1VG5RLqLGenxomC4g2hCxEnuxQkem7l06RXiu:mGnAh6lVpQrmJTyu
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Adds Run key to start application
-
Indicator Removal: File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity.
-