General
-
Target
124f69160117b292e2ed2de331d5e08f_JaffaCakes118
-
Size
68KB
-
Sample
240701-jdfe5ssflp
-
MD5
124f69160117b292e2ed2de331d5e08f
-
SHA1
fce8710e72db75553d33644ecb7b84d3edae9b26
-
SHA256
eb8636afcde958d15d1e43779500b8a21980727a4d9559773e41d1f25c0ccf4a
-
SHA512
ce6ee3fdfc5b576935f897ee9c05f90ee5f5023b4a4847c8c62cc2380f346fb77145e1df5d949bed90965a6e545d42c9e34cb8c3ce1a132ad4d8385159ce57c9
-
SSDEEP
1536:kOC3oppUdCzUwm20MyVpzCRDaroYNhseIXf5wu/3eotT:lC4niCDmznBkhCu/1J
Behavioral task
behavioral1
Sample
124f69160117b292e2ed2de331d5e08f_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
124f69160117b292e2ed2de331d5e08f_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
124f69160117b292e2ed2de331d5e08f_JaffaCakes118
-
Size
68KB
-
MD5
124f69160117b292e2ed2de331d5e08f
-
SHA1
fce8710e72db75553d33644ecb7b84d3edae9b26
-
SHA256
eb8636afcde958d15d1e43779500b8a21980727a4d9559773e41d1f25c0ccf4a
-
SHA512
ce6ee3fdfc5b576935f897ee9c05f90ee5f5023b4a4847c8c62cc2380f346fb77145e1df5d949bed90965a6e545d42c9e34cb8c3ce1a132ad4d8385159ce57c9
-
SSDEEP
1536:kOC3oppUdCzUwm20MyVpzCRDaroYNhseIXf5wu/3eotT:lC4niCDmznBkhCu/1J
Score8/10-
Possible privilege escalation attempt
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Modifies file permissions
-
File and Directory Permissions Modification: Windows File and Directory Permissions Modification
-
Drops file in System32 directory
-