General
-
Target
0224b573793d1780e3fec22739526c8f_JaffaCakes118
-
Size
2.2MB
-
Sample
240427-b9e59agf37
-
MD5
0224b573793d1780e3fec22739526c8f
-
SHA1
6ca9bc55382736c6fb173afb789318ee7067f206
-
SHA256
3b1824b41f3853376e21153d9125781dbb57b820d8a9a6cc037f82ea87f50973
-
SHA512
d4fe70783fd1666da5cb0220681b33aa7d99cd518c7944a043a43f82331497d6253bb7e3ac11b87eae780f06a49491a1197583dde5aee2606c8fc3b792300c93
-
SSDEEP
49152:qzRtq65qr5NfM7Tn3WflJPtMyMpy7fudoxTKd9W:qHqDLDflXPWGfSwiW
Malware Config
Targets
-
-
Target
0224b573793d1780e3fec22739526c8f_JaffaCakes118
-
Size
2.2MB
-
MD5
0224b573793d1780e3fec22739526c8f
-
SHA1
6ca9bc55382736c6fb173afb789318ee7067f206
-
SHA256
3b1824b41f3853376e21153d9125781dbb57b820d8a9a6cc037f82ea87f50973
-
SHA512
d4fe70783fd1666da5cb0220681b33aa7d99cd518c7944a043a43f82331497d6253bb7e3ac11b87eae780f06a49491a1197583dde5aee2606c8fc3b792300c93
-
SSDEEP
49152:qzRtq65qr5NfM7Tn3WflJPtMyMpy7fudoxTKd9W:qHqDLDflXPWGfSwiW
Score10/10-
Banload
Banload variants download malicious files, then install and execute the files.
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-