General
-
Target
4c5870829f2be67e77e9831e25893c1d_JaffaCakes118
-
Size
174KB
-
Sample
240331-eddt4adc3t
-
MD5
4c5870829f2be67e77e9831e25893c1d
-
SHA1
951d4f8b4723381256e8584f6ef80b5649754dde
-
SHA256
c3134451e6ef2212f832ceb0757d14a4d078771ec045bf195a66d40275542a1b
-
SHA512
a625e1b4714ecccb1bc6949174d5f9318daf946316d43fedda83cb86f8875ecce0ac443571487f63b1d484e68ddbe80a2ff9fb9f78183a06ff0803a15b54831b
-
SSDEEP
3072:L12oiRvrfhG8H44Eeh9yyhHqgEoS9D98aShyuymqhtig0e3E:woiRTfhFH4g9yynEVx98aCOtig7E
Static task
static1
Behavioral task
behavioral1
Sample
4c5870829f2be67e77e9831e25893c1d_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
4c5870829f2be67e77e9831e25893c1d_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
smokeloader
2020
http://linavanandr11.club/
http://iselaharty12.club/
http://giovaninardo13.club/
http://zayneliann14.club/
http://zorinosali15.club/
Targets
-
-
Target
4c5870829f2be67e77e9831e25893c1d_JaffaCakes118
-
Size
174KB
-
MD5
4c5870829f2be67e77e9831e25893c1d
-
SHA1
951d4f8b4723381256e8584f6ef80b5649754dde
-
SHA256
c3134451e6ef2212f832ceb0757d14a4d078771ec045bf195a66d40275542a1b
-
SHA512
a625e1b4714ecccb1bc6949174d5f9318daf946316d43fedda83cb86f8875ecce0ac443571487f63b1d484e68ddbe80a2ff9fb9f78183a06ff0803a15b54831b
-
SSDEEP
3072:L12oiRvrfhG8H44Eeh9yyhHqgEoS9D98aShyuymqhtig0e3E:woiRTfhFH4g9yynEVx98aCOtig7E
Score10/10-
Deletes itself
-
Executes dropped EXE
-
Suspicious use of SetThreadContext
-