General
-
Target
0f7fea936ac9aaf62528ed30373c838d_JaffaCakes118
-
Size
290KB
-
Sample
240328-zf6m4sgg66
-
MD5
0f7fea936ac9aaf62528ed30373c838d
-
SHA1
262413c6eee91c797806be1a22394036bf84b633
-
SHA256
ee6cb977e78651d7b9a3fd412a40f6e2cd1501f05b04c49e744db35c83181132
-
SHA512
a56c15fc8e293d00dff30918e3adcee5d66ef2182a5ed1cd9f176dd6fa37a9c7e401cd2490aac4f2cfda35b17099f1ade03efb0276b984cf6b359bf24b41baec
-
SSDEEP
3072:mu0XiLyS0KcBa2lQ7y4zp+VaYzOeS9OuiNwWHFwIQnvIByI/JTEqWpGxfZz5LjI7:72aG4y4zakOLn9ByI/JoNpGjRI0LPj
Static task
static1
Behavioral task
behavioral1
Sample
0f7fea936ac9aaf62528ed30373c838d_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
0f7fea936ac9aaf62528ed30373c838d_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
smokeloader
2020
http://honawey7.top/
http://wijibui0.top/
http://hefahei6.top/
http://pipevai4.top/
http://nalirou7.top/
Targets
-
-
Target
0f7fea936ac9aaf62528ed30373c838d_JaffaCakes118
-
Size
290KB
-
MD5
0f7fea936ac9aaf62528ed30373c838d
-
SHA1
262413c6eee91c797806be1a22394036bf84b633
-
SHA256
ee6cb977e78651d7b9a3fd412a40f6e2cd1501f05b04c49e744db35c83181132
-
SHA512
a56c15fc8e293d00dff30918e3adcee5d66ef2182a5ed1cd9f176dd6fa37a9c7e401cd2490aac4f2cfda35b17099f1ade03efb0276b984cf6b359bf24b41baec
-
SSDEEP
3072:mu0XiLyS0KcBa2lQ7y4zp+VaYzOeS9OuiNwWHFwIQnvIByI/JTEqWpGxfZz5LjI7:72aG4y4zakOLn9ByI/JoNpGjRI0LPj
Score10/10-
Deletes itself
-
Suspicious use of SetThreadContext
-