General
-
Target
48e19802f91f27e12638631ff2fd877a_JaffaCakes118
-
Size
296KB
-
Sample
240331-a816naaf8s
-
MD5
48e19802f91f27e12638631ff2fd877a
-
SHA1
25ba5fd7bc80335bad6b68667091ae04057cc4fa
-
SHA256
ec9abd41cb8dc44222977d171e58a8f2f74ca3499a2b552aee0aa963ee553d77
-
SHA512
88d8d4a07409f0a83f49ed282b9b3a53a5f60d0f491bed47abde2b57734a398523c4fb56a553719ff5143946c1f6909de6a9741bc595b3f1aefa4513a43b229f
-
SSDEEP
6144:I5JXGsnLAKwctA7DgzvuOsKrjzF+HX4GuIH2DVThH/:Itz1A7DlOs8zhGuIH2D1hH
Static task
static1
Behavioral task
behavioral1
Sample
48e19802f91f27e12638631ff2fd877a_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
48e19802f91f27e12638631ff2fd877a_JaffaCakes118.exe
Resource
win10v2004-20240319-en
Malware Config
Extracted
smokeloader
2020
http://honawey7.top/
http://wijibui0.top/
http://hefahei6.top/
http://pipevai4.top/
http://nalirou7.top/
Targets
-
-
Target
48e19802f91f27e12638631ff2fd877a_JaffaCakes118
-
Size
296KB
-
MD5
48e19802f91f27e12638631ff2fd877a
-
SHA1
25ba5fd7bc80335bad6b68667091ae04057cc4fa
-
SHA256
ec9abd41cb8dc44222977d171e58a8f2f74ca3499a2b552aee0aa963ee553d77
-
SHA512
88d8d4a07409f0a83f49ed282b9b3a53a5f60d0f491bed47abde2b57734a398523c4fb56a553719ff5143946c1f6909de6a9741bc595b3f1aefa4513a43b229f
-
SSDEEP
6144:I5JXGsnLAKwctA7DgzvuOsKrjzF+HX4GuIH2DVThH/:Itz1A7DlOs8zhGuIH2D1hH
Score10/10-
Deletes itself
-
Suspicious use of SetThreadContext
-