General
-
Target
525fae6a5818385cbb1c7422e9b188de_JaffaCakes118
-
Size
466KB
-
Sample
241017-rx7yhavbnk
-
MD5
525fae6a5818385cbb1c7422e9b188de
-
SHA1
ce639442abd9928e75816a9c204487f037bbb4c9
-
SHA256
be91e688577db4891e30bf8f068eb28468ae5565855ea79cf52d02aba0017791
-
SHA512
56d7618cb3586c765d7cc48fdee551b37b1a23adb529ce693e605cf1c679d2f0c84818a2782f63afadeea4675cb9189c177ffc9d8bc1ae895da48d3e38067a50
-
SSDEEP
12288:j3CtSokfFGUMKwlTIU/b37dJ75WEe+eKTxB6m7:jx9GzHlTv/b35tecFB6W
Behavioral task
behavioral1
Sample
525fae6a5818385cbb1c7422e9b188de_JaffaCakes118.exe
Resource
win7-20240708-en
Malware Config
Extracted
urelas
121.88.5.183
121.88.5.184
Targets
-
-
Target
525fae6a5818385cbb1c7422e9b188de_JaffaCakes118
-
Size
466KB
-
MD5
525fae6a5818385cbb1c7422e9b188de
-
SHA1
ce639442abd9928e75816a9c204487f037bbb4c9
-
SHA256
be91e688577db4891e30bf8f068eb28468ae5565855ea79cf52d02aba0017791
-
SHA512
56d7618cb3586c765d7cc48fdee551b37b1a23adb529ce693e605cf1c679d2f0c84818a2782f63afadeea4675cb9189c177ffc9d8bc1ae895da48d3e38067a50
-
SSDEEP
12288:j3CtSokfFGUMKwlTIU/b37dJ75WEe+eKTxB6m7:jx9GzHlTv/b35tecFB6W
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-