General
-
Target
f986d81f9a28faf01d2426d86e349bac_JaffaCakes118
-
Size
992KB
-
Sample
240419-fagx1sab3y
-
MD5
f986d81f9a28faf01d2426d86e349bac
-
SHA1
6040d35992bc2a832947bc5f0344a634ede94e89
-
SHA256
5bd92e772084c04101f784250361ab3c9caf589c718bb13aa9e5e2a75621936b
-
SHA512
259053716e8b5e67da30ee5bfe823ad591b7418f93cf4e1eacbdfab05cc238846014f744c3c763f2c60d2bd105891dd2670eaed4a95dab355d1e95ec0fb5873b
-
SSDEEP
12288:Qz9/32XvY6CD6zzXGytE0/OJKG+UlIKfJuUKo1nWjhStiSbUccDJIwsromI:U9vesuzzXGyO0/OJKiICuUKtYcwUccH/
Static task
static1
Behavioral task
behavioral1
Sample
f986d81f9a28faf01d2426d86e349bac_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
f986d81f9a28faf01d2426d86e349bac_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
f986d81f9a28faf01d2426d86e349bac_JaffaCakes118
-
Size
992KB
-
MD5
f986d81f9a28faf01d2426d86e349bac
-
SHA1
6040d35992bc2a832947bc5f0344a634ede94e89
-
SHA256
5bd92e772084c04101f784250361ab3c9caf589c718bb13aa9e5e2a75621936b
-
SHA512
259053716e8b5e67da30ee5bfe823ad591b7418f93cf4e1eacbdfab05cc238846014f744c3c763f2c60d2bd105891dd2670eaed4a95dab355d1e95ec0fb5873b
-
SSDEEP
12288:Qz9/32XvY6CD6zzXGytE0/OJKG+UlIKfJuUKo1nWjhStiSbUccDJIwsromI:U9vesuzzXGyO0/OJKiICuUKtYcwUccH/
Score9/10-
NirSoft MailPassView
Password recovery tool for various email clients
-
Nirsoft
-
Accesses Microsoft Outlook accounts
-
Suspicious use of SetThreadContext
-