General
-
Target
15a998925e3e0ac2ca2c0da01634f778_JaffaCakes118
-
Size
744KB
-
Sample
240627-mj7ncswgla
-
MD5
15a998925e3e0ac2ca2c0da01634f778
-
SHA1
cdecd718b27533905f782c58687fd65505be63b9
-
SHA256
1e3adf9d47bc468007e2e0901b464546f8db71116da4ceaff39ff1521373e420
-
SHA512
03bcb296f95e5dde0f7deb34f69677893291483ec3cef2c637c048b58045a60b8b9c111125e811e5a685961ad9f1c8adff85e153235552034e7849a38d15ceb7
-
SSDEEP
12288:d8UaT9XY2siA0bMG09xD7I3Gg8ecgVvfBoCDBOQQYbVXpuy1f/gORixjbJ:uUKoN0bUxgGa/pfBHDb+y1HgZ9l
Behavioral task
behavioral1
Sample
15a998925e3e0ac2ca2c0da01634f778_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
15a998925e3e0ac2ca2c0da01634f778_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
15a998925e3e0ac2ca2c0da01634f778_JaffaCakes118
-
Size
744KB
-
MD5
15a998925e3e0ac2ca2c0da01634f778
-
SHA1
cdecd718b27533905f782c58687fd65505be63b9
-
SHA256
1e3adf9d47bc468007e2e0901b464546f8db71116da4ceaff39ff1521373e420
-
SHA512
03bcb296f95e5dde0f7deb34f69677893291483ec3cef2c637c048b58045a60b8b9c111125e811e5a685961ad9f1c8adff85e153235552034e7849a38d15ceb7
-
SSDEEP
12288:d8UaT9XY2siA0bMG09xD7I3Gg8ecgVvfBoCDBOQQYbVXpuy1f/gORixjbJ:uUKoN0bUxgGa/pfBHDb+y1HgZ9l
Score10/10-
Modifies WinLogon for persistence
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-