General
-
Target
1a553174687e6d4c67c0b7c7b614fc25_JaffaCakes118
-
Size
25KB
-
Sample
240628-qypb4ssdmc
-
MD5
1a553174687e6d4c67c0b7c7b614fc25
-
SHA1
5d8266622d8b17091683364f9c934a7d18259df9
-
SHA256
6045384d95f21895e8096a636c5f43cc250dc58a864dde8bc42b9fc68a3b52ef
-
SHA512
09c2d7e7345cfd716adee427a10d2c70aa0c042a88c26f835220b26ab8ffe1843094a8d8afcfac6f5eaaef1e5ee565de1c8a10e9babf12989a0e820370bc4066
-
SSDEEP
384:8htKZyBE1dwMCoKZqWn4sNFytn25ekeqKBHaI2r5/n9BVxvH2zwXccM:8TWyB2dwMCbsWtytIHtKVa5RjW8XccM
Malware Config
Targets
-
-
Target
1a553174687e6d4c67c0b7c7b614fc25_JaffaCakes118
-
Size
25KB
-
MD5
1a553174687e6d4c67c0b7c7b614fc25
-
SHA1
5d8266622d8b17091683364f9c934a7d18259df9
-
SHA256
6045384d95f21895e8096a636c5f43cc250dc58a864dde8bc42b9fc68a3b52ef
-
SHA512
09c2d7e7345cfd716adee427a10d2c70aa0c042a88c26f835220b26ab8ffe1843094a8d8afcfac6f5eaaef1e5ee565de1c8a10e9babf12989a0e820370bc4066
-
SSDEEP
384:8htKZyBE1dwMCoKZqWn4sNFytn25ekeqKBHaI2r5/n9BVxvH2zwXccM:8TWyB2dwMCbsWtytIHtKVa5RjW8XccM
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-