General
-
Target
4a930a8c072eb4ec9d48e22bb1dbee92_JaffaCakes118
-
Size
403KB
-
Sample
241016-aa8g3stcpb
-
MD5
4a930a8c072eb4ec9d48e22bb1dbee92
-
SHA1
cc0a3c906a1d05eea35abcb3d7a107b009482eee
-
SHA256
96f9f905e5c8e2a0d029534da2adb3d8be5197d95012b1226cb61bbd092a4481
-
SHA512
3fd6088f20e5901143d40e820a72daf140bab0681a9901b0584179814d4487cab8a68adc21fda51ff4676ed274ab0fedd17edbd2f59803a0e16aaf1e2d455dcf
-
SSDEEP
6144:85SXvBoDWoyLYyzbkPC4DYM6SB6v+qLnAzYmhwrxcvkzmSBrohD:8IfBoDWoyFblU6hAJQnO9
Behavioral task
behavioral1
Sample
4a930a8c072eb4ec9d48e22bb1dbee92_JaffaCakes118.exe
Resource
win7-20240903-en
Malware Config
Extracted
urelas
218.54.31.165
218.54.31.226
Targets
-
-
Target
4a930a8c072eb4ec9d48e22bb1dbee92_JaffaCakes118
-
Size
403KB
-
MD5
4a930a8c072eb4ec9d48e22bb1dbee92
-
SHA1
cc0a3c906a1d05eea35abcb3d7a107b009482eee
-
SHA256
96f9f905e5c8e2a0d029534da2adb3d8be5197d95012b1226cb61bbd092a4481
-
SHA512
3fd6088f20e5901143d40e820a72daf140bab0681a9901b0584179814d4487cab8a68adc21fda51ff4676ed274ab0fedd17edbd2f59803a0e16aaf1e2d455dcf
-
SSDEEP
6144:85SXvBoDWoyLYyzbkPC4DYM6SB6v+qLnAzYmhwrxcvkzmSBrohD:8IfBoDWoyFblU6hAJQnO9
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-