General
-
Target
0642bb2e96f164d28f18261eb666abb5_JaffaCakes118
-
Size
19KB
-
Sample
241001-r96wzavfmj
-
MD5
0642bb2e96f164d28f18261eb666abb5
-
SHA1
190bfe9df497236b9fa17fe2280bef83412e2284
-
SHA256
e3fab924da7276e2276a730a68376ba64b8e7e96e7c68061b24c9fdf58be3799
-
SHA512
64b64bed90b266a8f133543554052eb4857f6b6d43458b2f25e32f3f5fd7d130732580d23857d6c43d1544d025a35ef8300f1b52da82bda842781f2ae7b03633
-
SSDEEP
384:STdUp56WNEbmpWn+P3s9MDV9lw/EwBK9/QqHn80/Ksf2WEjD5fgFgh:SJUaCEbg3s9S9lbwBK9/VHZ/4Dh
Malware Config
Targets
-
-
Target
0642bb2e96f164d28f18261eb666abb5_JaffaCakes118
-
Size
19KB
-
MD5
0642bb2e96f164d28f18261eb666abb5
-
SHA1
190bfe9df497236b9fa17fe2280bef83412e2284
-
SHA256
e3fab924da7276e2276a730a68376ba64b8e7e96e7c68061b24c9fdf58be3799
-
SHA512
64b64bed90b266a8f133543554052eb4857f6b6d43458b2f25e32f3f5fd7d130732580d23857d6c43d1544d025a35ef8300f1b52da82bda842781f2ae7b03633
-
SSDEEP
384:STdUp56WNEbmpWn+P3s9MDV9lw/EwBK9/QqHn80/Ksf2WEjD5fgFgh:SJUaCEbg3s9S9lbwBK9/VHZ/4Dh
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-