General
-
Target
0c19caf2d110e21b33ad9a128310a373_JaffaCakes118
-
Size
165KB
-
Sample
241002-xskkassalr
-
MD5
0c19caf2d110e21b33ad9a128310a373
-
SHA1
58b397f2e737fa4b9abe91652840fba818dbaeaf
-
SHA256
b808fa52b2fbb457d4594217e92d3f9280711928a10caddce5e736c2b4d27dca
-
SHA512
370deccd37527d6448f59417adba52afd8741355873c26f2948b508ad393bbd4b8804aac84a92ed5cf11010344cf69ab6e1b45923531beef5111b1c2b48c4f2b
-
SSDEEP
3072:T4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:siI/PlY37ZLF4Ca6WABqBOvs
Malware Config
Targets
-
-
Target
0c19caf2d110e21b33ad9a128310a373_JaffaCakes118
-
Size
165KB
-
MD5
0c19caf2d110e21b33ad9a128310a373
-
SHA1
58b397f2e737fa4b9abe91652840fba818dbaeaf
-
SHA256
b808fa52b2fbb457d4594217e92d3f9280711928a10caddce5e736c2b4d27dca
-
SHA512
370deccd37527d6448f59417adba52afd8741355873c26f2948b508ad393bbd4b8804aac84a92ed5cf11010344cf69ab6e1b45923531beef5111b1c2b48c4f2b
-
SSDEEP
3072:T4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:siI/PlY37ZLF4Ca6WABqBOvs
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-