General
-
Target
f83a20f718d2b719452e9554e7bfd047_JaffaCakes118
-
Size
4.2MB
-
Sample
240418-r6lrmaga97
-
MD5
f83a20f718d2b719452e9554e7bfd047
-
SHA1
2980fb923fe8609924194a6eacd701b7f9bcb373
-
SHA256
a6d2459e454472e4005e2ef23b943d90ab64e46ab0ca6e1735617059c60bfe00
-
SHA512
2ea6802430ff3c0de84556ad43e9f6a9062b9c9bd254e75efa1a547fb56807e0333a5fec7892d884206045c9db9880cd9df91ead4be373157ef153d03cd80745
-
SSDEEP
98304:/7zvc7Vd6JvVzBPeZH7V2dp03aGOSic+uDbysEhWNR+Yi9xOnBN9xrAHEn16zoCR:/7w7EreSNSPyAnBN9xl16zoCHOo
Behavioral task
behavioral1
Sample
f83a20f718d2b719452e9554e7bfd047_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
f83a20f718d2b719452e9554e7bfd047_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
f83a20f718d2b719452e9554e7bfd047_JaffaCakes118
-
Size
4.2MB
-
MD5
f83a20f718d2b719452e9554e7bfd047
-
SHA1
2980fb923fe8609924194a6eacd701b7f9bcb373
-
SHA256
a6d2459e454472e4005e2ef23b943d90ab64e46ab0ca6e1735617059c60bfe00
-
SHA512
2ea6802430ff3c0de84556ad43e9f6a9062b9c9bd254e75efa1a547fb56807e0333a5fec7892d884206045c9db9880cd9df91ead4be373157ef153d03cd80745
-
SSDEEP
98304:/7zvc7Vd6JvVzBPeZH7V2dp03aGOSic+uDbysEhWNR+Yi9xOnBN9xrAHEn16zoCR:/7w7EreSNSPyAnBN9xl16zoCHOo
Score9/10-
NirSoft MailPassView
Password recovery tool for various email clients
-
Nirsoft
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses Microsoft Outlook accounts
-
Adds Run key to start application
-