General
-
Target
032d51cc9e853497aa19367bf0f5d3f4_JaffaCakes118
-
Size
1.0MB
-
Sample
240427-nwznysad7y
-
MD5
032d51cc9e853497aa19367bf0f5d3f4
-
SHA1
f45fb1883791bd120706b5b680b99e7e36345cca
-
SHA256
f4e4e3ef9f45d0ac278ab301df30cdc6d59bc898143e63de4264ec12915c3030
-
SHA512
bddba11d4fce4a9e49dda5adf2ff79001d7135b74c62bcec9e076be5481a126442d2f132ffe5e0242ad55171f51e809b1cb1370df1c8b89ba7ac836548e19715
-
SSDEEP
24576:xRedlzVEd2Sbem6YWrEqJ5bFpjab8G7b9f:xR2ZEd2TrEqfF6Z
Static task
static1
Behavioral task
behavioral1
Sample
032d51cc9e853497aa19367bf0f5d3f4_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
032d51cc9e853497aa19367bf0f5d3f4_JaffaCakes118.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
032d51cc9e853497aa19367bf0f5d3f4_JaffaCakes118
-
Size
1.0MB
-
MD5
032d51cc9e853497aa19367bf0f5d3f4
-
SHA1
f45fb1883791bd120706b5b680b99e7e36345cca
-
SHA256
f4e4e3ef9f45d0ac278ab301df30cdc6d59bc898143e63de4264ec12915c3030
-
SHA512
bddba11d4fce4a9e49dda5adf2ff79001d7135b74c62bcec9e076be5481a126442d2f132ffe5e0242ad55171f51e809b1cb1370df1c8b89ba7ac836548e19715
-
SSDEEP
24576:xRedlzVEd2Sbem6YWrEqJ5bFpjab8G7b9f:xR2ZEd2TrEqfF6Z
Score7/10-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-