General
-
Target
9d8e1173ecc6d44b69fabdfd2d9ecb15_JaffaCakes118
-
Size
323KB
-
Sample
240611-kbypdazgka
-
MD5
9d8e1173ecc6d44b69fabdfd2d9ecb15
-
SHA1
a44f35e516f59d764226326c8eb4af6540d8a8a0
-
SHA256
781f78c1ee4bdaeb0bdcdc35380427fdfc00faee122bb4c5ff0733004a56dd04
-
SHA512
5f74ad1edb4636b7175ef022ceb71d09aa3334a1814ab85b6b9da2af947242d67a652ee5d42bd09a8755ff581ed07f306ce3240877a8dbae6ebd74872c0db5cb
-
SSDEEP
6144:TjD+U0UCpLIXn8IIbvxFU4i5Jwi//8EvZCgdmNElgtxuzUyfK:XD+U0Uq838IIbJFUV7s4kDVLu2
Static task
static1
Behavioral task
behavioral1
Sample
9d8e1173ecc6d44b69fabdfd2d9ecb15_JaffaCakes118.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
9d8e1173ecc6d44b69fabdfd2d9ecb15_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
gcleaner
gc-partners.in
Targets
-
-
Target
9d8e1173ecc6d44b69fabdfd2d9ecb15_JaffaCakes118
-
Size
323KB
-
MD5
9d8e1173ecc6d44b69fabdfd2d9ecb15
-
SHA1
a44f35e516f59d764226326c8eb4af6540d8a8a0
-
SHA256
781f78c1ee4bdaeb0bdcdc35380427fdfc00faee122bb4c5ff0733004a56dd04
-
SHA512
5f74ad1edb4636b7175ef022ceb71d09aa3334a1814ab85b6b9da2af947242d67a652ee5d42bd09a8755ff581ed07f306ce3240877a8dbae6ebd74872c0db5cb
-
SSDEEP
6144:TjD+U0UCpLIXn8IIbvxFU4i5Jwi//8EvZCgdmNElgtxuzUyfK:XD+U0Uq838IIbJFUV7s4kDVLu2
Score10/10-
OnlyLogger payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-