General
-
Target
3d3e5b1a761bcf91a77125a9674c9d3a_JaffaCakes118
-
Size
400KB
-
Sample
241013-cp6cdaybmj
-
MD5
3d3e5b1a761bcf91a77125a9674c9d3a
-
SHA1
9101062b71d9054bf45b0afe1bacb2e26653bbb6
-
SHA256
e5587304512c389dc33396011852adbd08227548ea3cb4cd55caac56224b3775
-
SHA512
ba393e965c719b09692408d10e70ffb1ab6db80a972815cdff814679c4a64063bde5c1f72fde5ce43b09c80b6d116c14f0b55db7486127175b519b37244e7471
-
SSDEEP
6144:stS1knFpUecRvB+UwQKQ8gAcNTId7u/JH/HCeuC7zN0CoLcePqqEbCSoPJGzwaTE:gHpUecRvBaATi3gxmCBrqt3u5E
Malware Config
Targets
-
-
Target
3d3e5b1a761bcf91a77125a9674c9d3a_JaffaCakes118
-
Size
400KB
-
MD5
3d3e5b1a761bcf91a77125a9674c9d3a
-
SHA1
9101062b71d9054bf45b0afe1bacb2e26653bbb6
-
SHA256
e5587304512c389dc33396011852adbd08227548ea3cb4cd55caac56224b3775
-
SHA512
ba393e965c719b09692408d10e70ffb1ab6db80a972815cdff814679c4a64063bde5c1f72fde5ce43b09c80b6d116c14f0b55db7486127175b519b37244e7471
-
SSDEEP
6144:stS1knFpUecRvB+UwQKQ8gAcNTId7u/JH/HCeuC7zN0CoLcePqqEbCSoPJGzwaTE:gHpUecRvBaATi3gxmCBrqt3u5E
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-