General
-
Target
fc8bf67ecb8852715717ca8a3a14e6bd_JaffaCakes118
-
Size
126KB
-
Sample
240928-sdd2ravaje
-
MD5
fc8bf67ecb8852715717ca8a3a14e6bd
-
SHA1
766b5fcac2da1a0e29de56024d1abcadfd6a0250
-
SHA256
7cf74d0662e88b1b161022697b2fdcf1e9df70b2a4778857bf8c7051ec5634c0
-
SHA512
91db4e291ba5fc6481cd1f902a6d086a03c3412f8cb40fbb42a9d1a1caabc3657932eb255b758b386b97972b7b291d416513aaf2f3ad7e80db09a0e25ed26764
-
SSDEEP
1536:pTWhwiiehaL5o7F4iKEFXvx9oFqWGVYL41YILk:pEvrwL5oJ/XU3
Malware Config
Targets
-
-
Target
fc8bf67ecb8852715717ca8a3a14e6bd_JaffaCakes118
-
Size
126KB
-
MD5
fc8bf67ecb8852715717ca8a3a14e6bd
-
SHA1
766b5fcac2da1a0e29de56024d1abcadfd6a0250
-
SHA256
7cf74d0662e88b1b161022697b2fdcf1e9df70b2a4778857bf8c7051ec5634c0
-
SHA512
91db4e291ba5fc6481cd1f902a6d086a03c3412f8cb40fbb42a9d1a1caabc3657932eb255b758b386b97972b7b291d416513aaf2f3ad7e80db09a0e25ed26764
-
SSDEEP
1536:pTWhwiiehaL5o7F4iKEFXvx9oFqWGVYL41YILk:pEvrwL5oJ/XU3
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Modifies system executable filetype association
-
Indicator Removal: File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity.
-