General
-
Target
db39aafa00159dfac897df7e18fd26db_JaffaCakes118
-
Size
2.2MB
-
Sample
240911-z2e3aatdpg
-
MD5
db39aafa00159dfac897df7e18fd26db
-
SHA1
33c3331dd159b67a0b7be1053f1c0df502af5e17
-
SHA256
c1e3b04435d14809267ee9909c8646f1afc58585d5242e1dfcf1de428148bf11
-
SHA512
3d3f5ce8b66a49971b1dd39ba3bf4bbb37bf02ea6d3d36e455e01c8bdaa6144db2028863218c932696e9b445e24172ad1cb7d08672b5eb566eea5f672982480b
-
SSDEEP
24576:h1OYdaO6qU2Uzf5iilCfBJyIWStDBXEZc78KU88SEhrQuzco:h1Os0qBI5iilCfhJvchrTX
Malware Config
Targets
-
-
Target
db39aafa00159dfac897df7e18fd26db_JaffaCakes118
-
Size
2.2MB
-
MD5
db39aafa00159dfac897df7e18fd26db
-
SHA1
33c3331dd159b67a0b7be1053f1c0df502af5e17
-
SHA256
c1e3b04435d14809267ee9909c8646f1afc58585d5242e1dfcf1de428148bf11
-
SHA512
3d3f5ce8b66a49971b1dd39ba3bf4bbb37bf02ea6d3d36e455e01c8bdaa6144db2028863218c932696e9b445e24172ad1cb7d08672b5eb566eea5f672982480b
-
SSDEEP
24576:h1OYdaO6qU2Uzf5iilCfBJyIWStDBXEZc78KU88SEhrQuzco:h1Os0qBI5iilCfhJvchrTX
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-