General
-
Target
2e179cddc3d5076a499c26ad79385813_JaffaCakes118
-
Size
198KB
-
Sample
241009-kll4bszeml
-
MD5
2e179cddc3d5076a499c26ad79385813
-
SHA1
9aeb20e541b2b9e6533817d37f7c3b18902c7757
-
SHA256
9d8ba9c823ce72c9b097232772311d11a06df8ec3e49d091a1a3eafc63f3bb66
-
SHA512
29c03513e71799ab603c7f7e091d77b782b475aa26bd6352ffda91fdec804b5117826bbeaaba493458b51ad3251cde21fc6d6f36c463bd681e0d0f1f8bbbcb18
-
SSDEEP
3072:gAwixCZ6Sh77R2Gpf606U8v0e7OIgPDFIbbzhPM67fIhAs:gExhk7rh7NEOIYWlPM6r6V
Behavioral task
behavioral1
Sample
2e179cddc3d5076a499c26ad79385813_JaffaCakes118.exe
Resource
win7-20240903-en
Malware Config
Extracted
urelas
218.54.47.76
218.54.47.77
218.54.47.74
Targets
-
-
Target
2e179cddc3d5076a499c26ad79385813_JaffaCakes118
-
Size
198KB
-
MD5
2e179cddc3d5076a499c26ad79385813
-
SHA1
9aeb20e541b2b9e6533817d37f7c3b18902c7757
-
SHA256
9d8ba9c823ce72c9b097232772311d11a06df8ec3e49d091a1a3eafc63f3bb66
-
SHA512
29c03513e71799ab603c7f7e091d77b782b475aa26bd6352ffda91fdec804b5117826bbeaaba493458b51ad3251cde21fc6d6f36c463bd681e0d0f1f8bbbcb18
-
SSDEEP
3072:gAwixCZ6Sh77R2Gpf606U8v0e7OIgPDFIbbzhPM67fIhAs:gExhk7rh7NEOIYWlPM6r6V
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-