General
-
Target
JaffaCakes118_91ec79afff2f2523e44a2c2f6caa6091
-
Size
268KB
-
Sample
250108-ht5vas1pcj
-
MD5
91ec79afff2f2523e44a2c2f6caa6091
-
SHA1
cf3bdb89fcaa050b5b8f61f7acb3a8e9faecb468
-
SHA256
306ae25ed76b6f8f47015d1ba38fc14b90e81a315ee7e494f17ecf48508b1a6b
-
SHA512
c72ecf6382d200ad2e4d4514819b844e79825abb0c35ff39592be38528f684c221c8d7b78121515110db963b859626d5e96100b38df4c6b5cf4be3045cbb6aa8
-
SSDEEP
3072:AUApueDWSppTaeskDEjUrqfkZ557YzAL9gFoI3X3fZE5UANaZ:ASeyGpTaesaQUufkL57YsL9NIx9ANaZ
Behavioral task
behavioral1
Sample
JaffaCakes118_91ec79afff2f2523e44a2c2f6caa6091.exe
Resource
win7-20240903-en
Malware Config
Extracted
urelas
112.175.88.207
112.175.88.208
Targets
-
-
Target
JaffaCakes118_91ec79afff2f2523e44a2c2f6caa6091
-
Size
268KB
-
MD5
91ec79afff2f2523e44a2c2f6caa6091
-
SHA1
cf3bdb89fcaa050b5b8f61f7acb3a8e9faecb468
-
SHA256
306ae25ed76b6f8f47015d1ba38fc14b90e81a315ee7e494f17ecf48508b1a6b
-
SHA512
c72ecf6382d200ad2e4d4514819b844e79825abb0c35ff39592be38528f684c221c8d7b78121515110db963b859626d5e96100b38df4c6b5cf4be3045cbb6aa8
-
SSDEEP
3072:AUApueDWSppTaeskDEjUrqfkZ557YzAL9gFoI3X3fZE5UANaZ:ASeyGpTaesaQUufkL57YsL9NIx9ANaZ
-
Urelas family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-