General
-
Target
ea95175774673c68cddcbc7244010765_JaffaCakes118
-
Size
2.2MB
-
Sample
240919-e27gba1ckc
-
MD5
ea95175774673c68cddcbc7244010765
-
SHA1
cac7862ed7d3bee4aad574ee159df2ca2c58c93a
-
SHA256
f1a1ad2d39df904768609bb16f1edd24e100468c8bc0a94b096ee3dd292139a8
-
SHA512
65a5d9be6279cd8238edfaeb4329b84c372abfc98bd8bb16c643bc7076959c860f106c650aa5b64344ddf2ff1d244955d9dec20f5ab0b0e8992444fc21fc6e95
-
SSDEEP
24576:h1OYdaOVqU2Uzf5silCfBJyRWSvDBXEZc78KU88S/hruzce:h1OsfqBI5silCfKLvXhrGz
Malware Config
Targets
-
-
Target
ea95175774673c68cddcbc7244010765_JaffaCakes118
-
Size
2.2MB
-
MD5
ea95175774673c68cddcbc7244010765
-
SHA1
cac7862ed7d3bee4aad574ee159df2ca2c58c93a
-
SHA256
f1a1ad2d39df904768609bb16f1edd24e100468c8bc0a94b096ee3dd292139a8
-
SHA512
65a5d9be6279cd8238edfaeb4329b84c372abfc98bd8bb16c643bc7076959c860f106c650aa5b64344ddf2ff1d244955d9dec20f5ab0b0e8992444fc21fc6e95
-
SSDEEP
24576:h1OYdaOVqU2Uzf5silCfBJyRWSvDBXEZc78KU88S/hruzce:h1OsfqBI5silCfKLvXhrGz
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-