General
-
Target
fb749b67e3b3e6bfdc9cb2467a2c9acb_JaffaCakes118
-
Size
173KB
-
Sample
240419-3zwh2abg31
-
MD5
fb749b67e3b3e6bfdc9cb2467a2c9acb
-
SHA1
13748074e2b2386de82cfb967487cee2d82a2908
-
SHA256
e64c44186ebe9b3ccebb55b94b83e0074347d29d5b3fff36c7f17fa40e40d9ed
-
SHA512
847d724a8a9584f0a7fac2199b9d67acdee97a6a7432b7091f0468cf3d047029172089f9fbe2a23579dd0914bbdb94eb72db43f25bf007759e8073652a38e238
-
SSDEEP
3072:fhpZNAUncfuKz/Vy3ApP1pqvpkBrMxPSrCHw9SI+VFZfOVmehXvSRkRehfoebNZ:fhzNAZPNBpPnypxNArZSnhAM
Behavioral task
behavioral1
Sample
fb749b67e3b3e6bfdc9cb2467a2c9acb_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
fb749b67e3b3e6bfdc9cb2467a2c9acb_JaffaCakes118
-
Size
173KB
-
MD5
fb749b67e3b3e6bfdc9cb2467a2c9acb
-
SHA1
13748074e2b2386de82cfb967487cee2d82a2908
-
SHA256
e64c44186ebe9b3ccebb55b94b83e0074347d29d5b3fff36c7f17fa40e40d9ed
-
SHA512
847d724a8a9584f0a7fac2199b9d67acdee97a6a7432b7091f0468cf3d047029172089f9fbe2a23579dd0914bbdb94eb72db43f25bf007759e8073652a38e238
-
SSDEEP
3072:fhpZNAUncfuKz/Vy3ApP1pqvpkBrMxPSrCHw9SI+VFZfOVmehXvSRkRehfoebNZ:fhzNAZPNBpPnypxNArZSnhAM
-
Executes dropped EXE
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-