General
-
Target
f28a4c0e388d87f531d21c767201cd60_JaffaCakes118
-
Size
1.4MB
-
Sample
240416-dkjs9ahg3s
-
MD5
f28a4c0e388d87f531d21c767201cd60
-
SHA1
5ad452f3c69471746c8d5eaa268bc01fc2230667
-
SHA256
9629e58ffe98cceff080f6d4c807d6852391c5a75a15a3493f69aa64681bf316
-
SHA512
88b17657bd94aafa492ab2e51adc0787af66b9270f7b7b4f3b48756f4f0fbb405db0bad166c347589ca907016eb3984efa17e0ee23e6badba575b21397b5fa5f
-
SSDEEP
24576:rOUcu74of4aI6hnq5Ahkp4j1NInpzxnQgBXhkXpdAipG+YEOXyT+zTmyoDl2ab8v:ao74ChqqKCYVlQeXEdhzYEOCSzThoDlE
Static task
static1
Behavioral task
behavioral1
Sample
f28a4c0e388d87f531d21c767201cd60_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
f28a4c0e388d87f531d21c767201cd60_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
f28a4c0e388d87f531d21c767201cd60_JaffaCakes118
-
Size
1.4MB
-
MD5
f28a4c0e388d87f531d21c767201cd60
-
SHA1
5ad452f3c69471746c8d5eaa268bc01fc2230667
-
SHA256
9629e58ffe98cceff080f6d4c807d6852391c5a75a15a3493f69aa64681bf316
-
SHA512
88b17657bd94aafa492ab2e51adc0787af66b9270f7b7b4f3b48756f4f0fbb405db0bad166c347589ca907016eb3984efa17e0ee23e6badba575b21397b5fa5f
-
SSDEEP
24576:rOUcu74of4aI6hnq5Ahkp4j1NInpzxnQgBXhkXpdAipG+YEOXyT+zTmyoDl2ab8v:ao74ChqqKCYVlQeXEdhzYEOCSzThoDlE
Score10/10-
Ardamax main executable
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-