General
-
Target
4c9ed29c4b409598d23837bd0909f54f_JaffaCakes118
-
Size
195KB
-
Sample
241016-nqlj5s1crq
-
MD5
4c9ed29c4b409598d23837bd0909f54f
-
SHA1
3056c6a0af73df4a7e67aab6a38bec9c64874e58
-
SHA256
1ed650d29fea8846e63a07bd04374cba8a7bc69f1838e68e6feae665a37b1d7c
-
SHA512
26b0b780de3a3482306f91b4f989e30c21fae7581b0bd39369d81c6904865bb6c74620e3b5f0ecaeae3eb2d52849458dd0cba396d762239cd50df0937d7f18a9
-
SSDEEP
3072:gAwixCZ6Sh77R2Gpf606U8v0e7OIgPDFIbbzhPM67fIht:gExhk7rh7NEOIYWlPM6r6t
Behavioral task
behavioral1
Sample
4c9ed29c4b409598d23837bd0909f54f_JaffaCakes118.exe
Resource
win7-20241010-en
Malware Config
Extracted
urelas
218.54.47.76
218.54.47.77
218.54.47.74
Targets
-
-
Target
4c9ed29c4b409598d23837bd0909f54f_JaffaCakes118
-
Size
195KB
-
MD5
4c9ed29c4b409598d23837bd0909f54f
-
SHA1
3056c6a0af73df4a7e67aab6a38bec9c64874e58
-
SHA256
1ed650d29fea8846e63a07bd04374cba8a7bc69f1838e68e6feae665a37b1d7c
-
SHA512
26b0b780de3a3482306f91b4f989e30c21fae7581b0bd39369d81c6904865bb6c74620e3b5f0ecaeae3eb2d52849458dd0cba396d762239cd50df0937d7f18a9
-
SSDEEP
3072:gAwixCZ6Sh77R2Gpf606U8v0e7OIgPDFIbbzhPM67fIht:gExhk7rh7NEOIYWlPM6r6t
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-