General
-
Target
fd6b82855a5dee211180e8e2acfe61c2_JaffaCakes118
-
Size
543KB
-
Sample
240420-xnq7aafh7v
-
MD5
fd6b82855a5dee211180e8e2acfe61c2
-
SHA1
74fff0793248cc7eb65bd423799e8bb89dd5dde2
-
SHA256
8e938e1b74eb68ee2b1061b30c8290b08c0d64b93cbc193c84ee963237a431e2
-
SHA512
f22e05167c16978d72d8db0724cd7f81434c64001cf46add0e90daae5b9b2c5bafcb23ae421b4675b6c86ec903abc68a151dd97d69d7170d1b97bc49b6a606c2
-
SSDEEP
12288:GDflNwb6MUmxpbMXesgag6sXMZG/wL9SFkmbgbNBELtL:Elk3xdR56sXCaWQNbeNiJ
Static task
static1
Behavioral task
behavioral1
Sample
fd6b82855a5dee211180e8e2acfe61c2_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
fd6b82855a5dee211180e8e2acfe61c2_JaffaCakes118
-
Size
543KB
-
MD5
fd6b82855a5dee211180e8e2acfe61c2
-
SHA1
74fff0793248cc7eb65bd423799e8bb89dd5dde2
-
SHA256
8e938e1b74eb68ee2b1061b30c8290b08c0d64b93cbc193c84ee963237a431e2
-
SHA512
f22e05167c16978d72d8db0724cd7f81434c64001cf46add0e90daae5b9b2c5bafcb23ae421b4675b6c86ec903abc68a151dd97d69d7170d1b97bc49b6a606c2
-
SSDEEP
12288:GDflNwb6MUmxpbMXesgag6sXMZG/wL9SFkmbgbNBELtL:Elk3xdR56sXCaWQNbeNiJ
-
Detect Lumma Stealer payload V4
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-