General
-
Target
7f454e7bb8c10b08f353a81ddfdf3d97_JaffaCakes118
-
Size
581KB
-
Sample
241030-p2dt4stdrf
-
MD5
7f454e7bb8c10b08f353a81ddfdf3d97
-
SHA1
241dd276faf75ebe10041a32ecc03d940a0243e7
-
SHA256
dd5dbd9da0a4461fd03ff956cad907ffd185cbbdfe610bfe0599ebb14c202b7b
-
SHA512
17c57b9895e330f610ddc5a53cdbfeb3f60e24cdec8c1e2b2e2ca16f45eff680ec3e53ebd6afc307d75af07d65c2761c4b85491e04535842b0a1e9b7fb2392c5
-
SSDEEP
12288:uoMDtCi7NFlZnNqZ9xGrLpZ0ZHEqtgb0Ur:ufplNFgxG5eZngb0Q
Static task
static1
Behavioral task
behavioral1
Sample
7f454e7bb8c10b08f353a81ddfdf3d97_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
7f454e7bb8c10b08f353a81ddfdf3d97_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
7f454e7bb8c10b08f353a81ddfdf3d97_JaffaCakes118
-
Size
581KB
-
MD5
7f454e7bb8c10b08f353a81ddfdf3d97
-
SHA1
241dd276faf75ebe10041a32ecc03d940a0243e7
-
SHA256
dd5dbd9da0a4461fd03ff956cad907ffd185cbbdfe610bfe0599ebb14c202b7b
-
SHA512
17c57b9895e330f610ddc5a53cdbfeb3f60e24cdec8c1e2b2e2ca16f45eff680ec3e53ebd6afc307d75af07d65c2761c4b85491e04535842b0a1e9b7fb2392c5
-
SSDEEP
12288:uoMDtCi7NFlZnNqZ9xGrLpZ0ZHEqtgb0Ur:ufplNFgxG5eZngb0Q
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Indicator Removal: File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity.
-