General
-
Target
22cff880fa28e4de8a2b3cfe8e4167ac_JaffaCakes118
-
Size
5.1MB
-
Sample
240508-czd1wage66
-
MD5
22cff880fa28e4de8a2b3cfe8e4167ac
-
SHA1
4fe818c809011d0105b4199fe10c5843d6b892f3
-
SHA256
4a37ef0832eff0801ea4c2bcd4c544d70aa91685fa2d0e18d9f382956ba9b212
-
SHA512
50760946e9ee30688db36b1e7dc702a3a15f09e09cd62ca7ccc9e1dfc165c841fa2d1947bb9c9d6f866c87944e20658b4c7a0dfc05ae97a63cc533a6cdb8b06b
-
SSDEEP
98304:016BpLto6+8GmggciWjsMfdIfabcAhScW8GJ1plxuemt3uQZ13kXUUXx1sXgzcms:k6+8kgciUsMfd0APWF1ceK1T3k5XswW
Malware Config
Targets
-
-
Target
22cff880fa28e4de8a2b3cfe8e4167ac_JaffaCakes118
-
Size
5.1MB
-
MD5
22cff880fa28e4de8a2b3cfe8e4167ac
-
SHA1
4fe818c809011d0105b4199fe10c5843d6b892f3
-
SHA256
4a37ef0832eff0801ea4c2bcd4c544d70aa91685fa2d0e18d9f382956ba9b212
-
SHA512
50760946e9ee30688db36b1e7dc702a3a15f09e09cd62ca7ccc9e1dfc165c841fa2d1947bb9c9d6f866c87944e20658b4c7a0dfc05ae97a63cc533a6cdb8b06b
-
SSDEEP
98304:016BpLto6+8GmggciWjsMfdIfabcAhScW8GJ1plxuemt3uQZ13kXUUXx1sXgzcms:k6+8kgciUsMfd0APWF1ceK1T3k5XswW
Score10/10-
AsyncRat
AsyncRAT is designed to remotely monitor and control other computers written in C#.
-
Detect ZGRat V1
-
ZGRat
ZGRat is remote access trojan written in C#.
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of SetThreadContext
-