General
-
Target
c27153c91cb95e31ccebcd4462d6a8f1_JaffaCakes118
-
Size
793KB
-
Sample
240826-g3q7tszakb
-
MD5
c27153c91cb95e31ccebcd4462d6a8f1
-
SHA1
31f14e81d2fe51f9f52a22e54bc346ca289222b1
-
SHA256
76bd9694df748f0433ada35d40dd85a7e9dc6e17c70bbf39d090d864d54785db
-
SHA512
c66b5d85a800b5156119a5830189afaeca540570cd490dcceb7525181c174a0d4f99d9cb195e898a918818f576a383458d42c448dbf3d1a6cde6eb46453b71dd
-
SSDEEP
24576:e0IgzD+8+Oee6JDzHLE2IJPmAf0cOemWgOy7Ea:eiyvDJrHIMm3Q7d7Ea
Malware Config
Targets
-
-
Target
c27153c91cb95e31ccebcd4462d6a8f1_JaffaCakes118
-
Size
793KB
-
MD5
c27153c91cb95e31ccebcd4462d6a8f1
-
SHA1
31f14e81d2fe51f9f52a22e54bc346ca289222b1
-
SHA256
76bd9694df748f0433ada35d40dd85a7e9dc6e17c70bbf39d090d864d54785db
-
SHA512
c66b5d85a800b5156119a5830189afaeca540570cd490dcceb7525181c174a0d4f99d9cb195e898a918818f576a383458d42c448dbf3d1a6cde6eb46453b71dd
-
SSDEEP
24576:e0IgzD+8+Oee6JDzHLE2IJPmAf0cOemWgOy7Ea:eiyvDJrHIMm3Q7d7Ea
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-