General
-
Target
eaa87b4d6d983cb3194e2ecf826b1e85_JaffaCakes118
-
Size
747KB
-
Sample
240919-fzzt5asgrr
-
MD5
eaa87b4d6d983cb3194e2ecf826b1e85
-
SHA1
1bdecd2cd50c2c2019afd7968d5f44cbd83eeab0
-
SHA256
f45e5bcb6c3b9e40b2428a9ff28ed10f1bf6809373aa82ab4be1221275a0465c
-
SHA512
9fa5bf78d4e2e6a33e19d56365dbc79333780f58f221c2bfa9ffc57dd74010d216e0859f93beb08cbbcf36e27e921066b353edd4309ca211532cf0d7b5261d82
-
SSDEEP
12288:v47scuGg2kRrq8VywDmxeR7VJhAX1JXTlro1240IUzm7IB/0z+Rotx9:isaJNwDmxA7VJhAXf9W7k/4+Rotx9
Malware Config
Targets
-
-
Target
eaa87b4d6d983cb3194e2ecf826b1e85_JaffaCakes118
-
Size
747KB
-
MD5
eaa87b4d6d983cb3194e2ecf826b1e85
-
SHA1
1bdecd2cd50c2c2019afd7968d5f44cbd83eeab0
-
SHA256
f45e5bcb6c3b9e40b2428a9ff28ed10f1bf6809373aa82ab4be1221275a0465c
-
SHA512
9fa5bf78d4e2e6a33e19d56365dbc79333780f58f221c2bfa9ffc57dd74010d216e0859f93beb08cbbcf36e27e921066b353edd4309ca211532cf0d7b5261d82
-
SSDEEP
12288:v47scuGg2kRrq8VywDmxeR7VJhAX1JXTlro1240IUzm7IB/0z+Rotx9:isaJNwDmxA7VJhAXf9W7k/4+Rotx9
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-