General
-
Target
13c22eba39cb24a32931129089efb67e_JaffaCakes118
-
Size
3.1MB
-
Sample
240626-2rn9ba1ejl
-
MD5
13c22eba39cb24a32931129089efb67e
-
SHA1
6a18c0b7bf13bb17f3bcc29cddfcd7256d203b7c
-
SHA256
a4b73f87873a37e92390adc9ecf7f6b7d0867b9af8af281ec7cf9be78ab6be1a
-
SHA512
81f1e6a3d5c1b90acb95c80548ed1e70fdd01156002956bd95cf08c72b32db1c99ff77ec96affdef9ecffeafde805329ad4b24e03142498d2fb2a44b5c8c7137
-
SSDEEP
98304:JuS6neYG/6k272bbUccfbkzP9UMqNHQwFY84I2Yw2O:JuteX1bbUfbkzP9Uo8X/O
Static task
static1
Behavioral task
behavioral1
Sample
13c22eba39cb24a32931129089efb67e_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
13c22eba39cb24a32931129089efb67e_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
13c22eba39cb24a32931129089efb67e_JaffaCakes118
-
Size
3.1MB
-
MD5
13c22eba39cb24a32931129089efb67e
-
SHA1
6a18c0b7bf13bb17f3bcc29cddfcd7256d203b7c
-
SHA256
a4b73f87873a37e92390adc9ecf7f6b7d0867b9af8af281ec7cf9be78ab6be1a
-
SHA512
81f1e6a3d5c1b90acb95c80548ed1e70fdd01156002956bd95cf08c72b32db1c99ff77ec96affdef9ecffeafde805329ad4b24e03142498d2fb2a44b5c8c7137
-
SSDEEP
98304:JuS6neYG/6k272bbUccfbkzP9UMqNHQwFY84I2Yw2O:JuteX1bbUfbkzP9Uo8X/O
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-