General
-
Target
fe55aa33d7e0b4ef1cb72e61a0a7e581_JaffaCakes118
-
Size
3.9MB
-
Sample
240421-d533maaa29
-
MD5
fe55aa33d7e0b4ef1cb72e61a0a7e581
-
SHA1
7b2f0e87f283d1ec4a756b380666a21e303579b0
-
SHA256
110fc287b499bea670dc2060d8a828727f350e9be446879ecfc7f71732ee15ed
-
SHA512
6b60973f47eddd07a556de3b573902c077830ebbda6e7c4f83f6baa66a0414a6998f3a570b7e559ed9cfd399e9febd7c93cf4454b7cfd59ab4863849f4c5123b
-
SSDEEP
98304:l5nFFK+GEWJRgsnAWE05y4faRXsYA+tiQDnIjlBzpA7iQTWKKhgblOv:LFFKZEWJtni7XpA+MSIjl5pQnTWtrv
Malware Config
Targets
-
-
Target
fe55aa33d7e0b4ef1cb72e61a0a7e581_JaffaCakes118
-
Size
3.9MB
-
MD5
fe55aa33d7e0b4ef1cb72e61a0a7e581
-
SHA1
7b2f0e87f283d1ec4a756b380666a21e303579b0
-
SHA256
110fc287b499bea670dc2060d8a828727f350e9be446879ecfc7f71732ee15ed
-
SHA512
6b60973f47eddd07a556de3b573902c077830ebbda6e7c4f83f6baa66a0414a6998f3a570b7e559ed9cfd399e9febd7c93cf4454b7cfd59ab4863849f4c5123b
-
SSDEEP
98304:l5nFFK+GEWJRgsnAWE05y4faRXsYA+tiQDnIjlBzpA7iQTWKKhgblOv:LFFKZEWJtni7XpA+MSIjl5pQnTWtrv
Score8/10-
Possible privilege escalation attempt
-
Modifies file permissions
-
Blocklisted process makes network request
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-