General
-
Target
f8012e3623950f607b86728114a098d9_JaffaCakes118
-
Size
736KB
-
Sample
240418-pssxnsed2w
-
MD5
f8012e3623950f607b86728114a098d9
-
SHA1
1ada61473b503fc185f6a835ceb9e42550678f8b
-
SHA256
d9733222d8219b1b1776b901610c9df65052fd1baa8a068c59549fe0adc0c702
-
SHA512
db2a3799da078355593e3dc369b81e27b4bfc4f78ffbda14feb92a5690fd0f6e017c29bc23bfc2abdf4b51ef9651264ded62599924ef16168255377d68b28420
-
SSDEEP
12288:cz9/32XvY6CD6zzXGytE0/OJKG+UlIKfJuUKo1nWjhStiSbUccDJIwsromT:g9vesuzzXGyO0/OJKiICuUKtYcwUccH0
Static task
static1
Behavioral task
behavioral1
Sample
f8012e3623950f607b86728114a098d9_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
f8012e3623950f607b86728114a098d9_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
f8012e3623950f607b86728114a098d9_JaffaCakes118
-
Size
736KB
-
MD5
f8012e3623950f607b86728114a098d9
-
SHA1
1ada61473b503fc185f6a835ceb9e42550678f8b
-
SHA256
d9733222d8219b1b1776b901610c9df65052fd1baa8a068c59549fe0adc0c702
-
SHA512
db2a3799da078355593e3dc369b81e27b4bfc4f78ffbda14feb92a5690fd0f6e017c29bc23bfc2abdf4b51ef9651264ded62599924ef16168255377d68b28420
-
SSDEEP
12288:cz9/32XvY6CD6zzXGytE0/OJKG+UlIKfJuUKo1nWjhStiSbUccDJIwsromT:g9vesuzzXGyO0/OJKiICuUKtYcwUccH0
Score9/10-
NirSoft MailPassView
Password recovery tool for various email clients
-
Nirsoft
-
Accesses Microsoft Outlook accounts
-
Suspicious use of SetThreadContext
-