General
-
Target
340e7a400b655de787b990d2a9665524_JaffaCakes118
-
Size
494KB
-
Sample
241011-kbz77stgpb
-
MD5
340e7a400b655de787b990d2a9665524
-
SHA1
590c7565e747bd85a3e9980fbf52c64d2d517ad0
-
SHA256
ec8a947059fc22e6cf39eb70c83a734d3fdb9dccea70b9dd73e67a3f4b5f7c6d
-
SHA512
ce9fda63f3a90afcd21ebfa78ab51fadccbc624f8df6f28dc06da562d9a41c6b8ed6872b3e954be98106385eb5105b9e2a6a801be34c782034eed1888c13acce
-
SSDEEP
6144:NKLOgsgomKLEFESGz0SPpeEPkPDPrzgtRY5RdrHc13FG9ItU6GvPwuu:AOgwmisETzuaeDPvjJ81VGqK6GvPY
Behavioral task
behavioral1
Sample
340e7a400b655de787b990d2a9665524_JaffaCakes118.exe
Resource
win7-20240903-en
Malware Config
Extracted
urelas
1.234.83.146
133.242.129.155
218.54.31.226
218.54.31.165
Targets
-
-
Target
340e7a400b655de787b990d2a9665524_JaffaCakes118
-
Size
494KB
-
MD5
340e7a400b655de787b990d2a9665524
-
SHA1
590c7565e747bd85a3e9980fbf52c64d2d517ad0
-
SHA256
ec8a947059fc22e6cf39eb70c83a734d3fdb9dccea70b9dd73e67a3f4b5f7c6d
-
SHA512
ce9fda63f3a90afcd21ebfa78ab51fadccbc624f8df6f28dc06da562d9a41c6b8ed6872b3e954be98106385eb5105b9e2a6a801be34c782034eed1888c13acce
-
SSDEEP
6144:NKLOgsgomKLEFESGz0SPpeEPkPDPrzgtRY5RdrHc13FG9ItU6GvPwuu:AOgwmisETzuaeDPvjJ81VGqK6GvPY
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-