General
-
Target
038b8af3bcf2dc5d079a703cb7264e3f_JaffaCakes118
-
Size
6.3MB
-
Sample
240427-y4ec4afe76
-
MD5
038b8af3bcf2dc5d079a703cb7264e3f
-
SHA1
9e6238a0c0d233faecc8ff516e0db983329907d8
-
SHA256
b34e4fc567eb81df1584a8bd124647b50aee29b941883a914fbeada959174340
-
SHA512
5817345089b1e105e7447f13953ed53ff2cc3920bf88939c42d2036dc572a56a75f2c3666a02893c2a768f181fa600f2290caee02e1238f4022d5d4476cfb1df
-
SSDEEP
98304:olerjesRJ8YQU/81qfpiUq5q91M5qtKwFRCs1i:frj578YQZ1qfT9ltu
Malware Config
Targets
-
-
Target
038b8af3bcf2dc5d079a703cb7264e3f_JaffaCakes118
-
Size
6.3MB
-
MD5
038b8af3bcf2dc5d079a703cb7264e3f
-
SHA1
9e6238a0c0d233faecc8ff516e0db983329907d8
-
SHA256
b34e4fc567eb81df1584a8bd124647b50aee29b941883a914fbeada959174340
-
SHA512
5817345089b1e105e7447f13953ed53ff2cc3920bf88939c42d2036dc572a56a75f2c3666a02893c2a768f181fa600f2290caee02e1238f4022d5d4476cfb1df
-
SSDEEP
98304:olerjesRJ8YQU/81qfpiUq5q91M5qtKwFRCs1i:frj578YQZ1qfT9ltu
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
ASPack v2.12-2.42
Detects executables packed with ASPack v2.12-2.42
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-