General
-
Target
4a17d2ee49a0aecec9ef845c0251d54d_JaffaCakes118
-
Size
4.7MB
-
Sample
241015-1b2c9sxhqf
-
MD5
4a17d2ee49a0aecec9ef845c0251d54d
-
SHA1
88933cbeeb86f3dd344421d09ee97ee6992a7a12
-
SHA256
392a5b0f8faba1f03619205eb498fb047d16da19353304f88d1c950a3443cd2b
-
SHA512
8393e8d06bae9aa6303a93ab86956101543ed0f89cd0cee0b64d84c02cb896eb38d7520b356b340e4dea0a4b9e458bff344348b244d12c630a0ef7fc84b5d934
-
SSDEEP
49152:a2V7djp+oE2ZjHoZB6EZ88JUUXIEABMRviTURcL:a2V7NpW6Y6joUX
Behavioral task
behavioral1
Sample
4a17d2ee49a0aecec9ef845c0251d54d_JaffaCakes118.exe
Resource
win7-20240903-en
Malware Config
Extracted
urelas
121.88.5.183
218.54.30.235
121.88.5.181
112.223.217.101
Targets
-
-
Target
4a17d2ee49a0aecec9ef845c0251d54d_JaffaCakes118
-
Size
4.7MB
-
MD5
4a17d2ee49a0aecec9ef845c0251d54d
-
SHA1
88933cbeeb86f3dd344421d09ee97ee6992a7a12
-
SHA256
392a5b0f8faba1f03619205eb498fb047d16da19353304f88d1c950a3443cd2b
-
SHA512
8393e8d06bae9aa6303a93ab86956101543ed0f89cd0cee0b64d84c02cb896eb38d7520b356b340e4dea0a4b9e458bff344348b244d12c630a0ef7fc84b5d934
-
SSDEEP
49152:a2V7djp+oE2ZjHoZB6EZ88JUUXIEABMRviTURcL:a2V7NpW6Y6joUX
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-