General
-
Target
f1c61308ec715bd60e85528da059b067_JaffaCakes118
-
Size
694KB
-
Sample
240415-yekhtaed86
-
MD5
f1c61308ec715bd60e85528da059b067
-
SHA1
563c6c64c8a51782f3d25be04742d7237303f061
-
SHA256
96e9948b37188d0c48723879819dd61e7a50394e6f789a278be7ade26bb0df40
-
SHA512
4567fe9bba0f3a4c6da6783c169fd5fca85f6940e625499d52644ea0256068bbaaa8947fd72bb72c93648cac47a53df06b81393b4e7ed7495f04fc86d1fe7009
-
SSDEEP
12288:tDR6zb2IAbh0dthDOUuPWLaZlAAMkthS+dhaPTOOybiYE28hnvk5n:Gv2bbhiDOUXLanokpbaPT0biK8hs5n
Static task
static1
Behavioral task
behavioral1
Sample
f1c61308ec715bd60e85528da059b067_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
vidar
40
517
https://lenak513.tumblr.com/
-
profile_id
517
Targets
-
-
Target
f1c61308ec715bd60e85528da059b067_JaffaCakes118
-
Size
694KB
-
MD5
f1c61308ec715bd60e85528da059b067
-
SHA1
563c6c64c8a51782f3d25be04742d7237303f061
-
SHA256
96e9948b37188d0c48723879819dd61e7a50394e6f789a278be7ade26bb0df40
-
SHA512
4567fe9bba0f3a4c6da6783c169fd5fca85f6940e625499d52644ea0256068bbaaa8947fd72bb72c93648cac47a53df06b81393b4e7ed7495f04fc86d1fe7009
-
SSDEEP
12288:tDR6zb2IAbh0dthDOUuPWLaZlAAMkthS+dhaPTOOybiYE28hnvk5n:Gv2bbhiDOUXLanokpbaPT0biK8hs5n
-
Vidar Stealer
-
Suspicious use of SetThreadContext
-