General
-
Target
ee06144da6d6e04239dd6f37322611e0_JaffaCakes118
-
Size
694KB
-
Sample
240411-wmfhqagg75
-
MD5
ee06144da6d6e04239dd6f37322611e0
-
SHA1
d5c5f198b8c424e0f7d6c0b24b7aeaab98a2a0ac
-
SHA256
8222e5fb27ab87f640ccf09b30feeecc20ed9fedc91f953c9dae61fdf51ec16b
-
SHA512
4dca0a459bf181469faee169d75fb757a4da5c5af6cffd73f9260c8fb9f0f7f0e5936d31d21587e2ab5c953ceba890e4b0e2aff4f9fd7bb225e05fbf12a2ec8e
-
SSDEEP
12288:tDR6zb2IAbh0dthDOUuPWLaZlAAMkthS+dhaPTOOybiam7MJzi9S7IGOu:Gv2bbhiDOUXLanokpbaPT0biaMxmOu
Static task
static1
Behavioral task
behavioral1
Sample
ee06144da6d6e04239dd6f37322611e0_JaffaCakes118.exe
Resource
win7-20231129-en
Malware Config
Extracted
vidar
40
517
https://lenak513.tumblr.com/
-
profile_id
517
Targets
-
-
Target
ee06144da6d6e04239dd6f37322611e0_JaffaCakes118
-
Size
694KB
-
MD5
ee06144da6d6e04239dd6f37322611e0
-
SHA1
d5c5f198b8c424e0f7d6c0b24b7aeaab98a2a0ac
-
SHA256
8222e5fb27ab87f640ccf09b30feeecc20ed9fedc91f953c9dae61fdf51ec16b
-
SHA512
4dca0a459bf181469faee169d75fb757a4da5c5af6cffd73f9260c8fb9f0f7f0e5936d31d21587e2ab5c953ceba890e4b0e2aff4f9fd7bb225e05fbf12a2ec8e
-
SSDEEP
12288:tDR6zb2IAbh0dthDOUuPWLaZlAAMkthS+dhaPTOOybiam7MJzi9S7IGOu:Gv2bbhiDOUXLanokpbaPT0biaMxmOu
-
Vidar Stealer
-
Suspicious use of SetThreadContext
-