General
-
Target
071dc7d20d6398c8e500761e7ddd25c1_JaffaCakes118
-
Size
790KB
-
Sample
240429-h815nadd59
-
MD5
071dc7d20d6398c8e500761e7ddd25c1
-
SHA1
019932c91d9b6bce79b4134e8739cd2c155e308f
-
SHA256
367c9fcadfdcdec4ae63e3fb213b6affbb8c8fb6253c4abfbb558df147de4765
-
SHA512
7358ead2311945c365ca2515b60d9fcb9eed4b6ea69e2d983936b674c27aff82c643de471676cdb27de7612a3d2f6aaf34814cf496d5e384cf54ef7eaa8f3f4e
-
SSDEEP
12288:UAMY03X3XXD3I33333k363k3haXkX+W3g35Q3z3a3Gv33XHI3vZI3333B3hlGXHT:qDcQdJ4Xhf5NwrDO
Malware Config
Targets
-
-
Target
071dc7d20d6398c8e500761e7ddd25c1_JaffaCakes118
-
Size
790KB
-
MD5
071dc7d20d6398c8e500761e7ddd25c1
-
SHA1
019932c91d9b6bce79b4134e8739cd2c155e308f
-
SHA256
367c9fcadfdcdec4ae63e3fb213b6affbb8c8fb6253c4abfbb558df147de4765
-
SHA512
7358ead2311945c365ca2515b60d9fcb9eed4b6ea69e2d983936b674c27aff82c643de471676cdb27de7612a3d2f6aaf34814cf496d5e384cf54ef7eaa8f3f4e
-
SSDEEP
12288:UAMY03X3XXD3I33333k363k3haXkX+W3g35Q3z3a3Gv33XHI3vZI3333B3hlGXHT:qDcQdJ4Xhf5NwrDO
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-