General
-
Target
JaffaCakes118_4a5c20288beee4a20187788f64d7086ba7d4a13edc7b48c6b0447ea2c3107a99
-
Size
2.6MB
-
Sample
241224-mf6lwsvma1
-
MD5
7ab4d2ce325b1531caef94e9f9b565b3
-
SHA1
79ec9190941c32eccda38bc0ce0d68763b55d041
-
SHA256
4a5c20288beee4a20187788f64d7086ba7d4a13edc7b48c6b0447ea2c3107a99
-
SHA512
34978117c866b555c9fb336142db856e5c46b8b75407828651e26f75f858577a6e684802af399866445fb394d3f701f0c14075340662ebef92b9a297397e295e
-
SSDEEP
49152:uV+88b5GWFesEIfMK1T6JxAYJwHx1xLB/sK3pYV1+0U0Rm6a0miqlEEAEYW8tis7:uY88blF0SMK6xAqwRzN53pS0j0Pa0mi1
Static task
static1
Behavioral task
behavioral1
Sample
563dd94590408df258e1b8364870432b47eb85eac99ee57d252114a726c863f3.exe
Resource
win7-20241010-en
Malware Config
Targets
-
-
Target
563dd94590408df258e1b8364870432b47eb85eac99ee57d252114a726c863f3
-
Size
2.9MB
-
MD5
cb6633f84d025274ebfba538e8d1c372
-
SHA1
098dd07b8ec18dbe2b8f957307aa344c690af16d
-
SHA256
563dd94590408df258e1b8364870432b47eb85eac99ee57d252114a726c863f3
-
SHA512
c94789933c37c0c2c746b42dae70f0b387e42972b7468c257d58f35327e9e5e46b72fbf893a369cb6cc87de6a88f56307815b1db420959ce4aa65e07aceddb6c
-
SSDEEP
49152:3secMhf75LxU9wBUcIlKSeY36ZUdEcA5w5FeIY0gHGf8GlFSI4v1YojKr:cDMLEwBUVcx5UGdw5FeI1xf8GTSI4e
-
Asyncrat family
-
Async RAT payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-