General
-
Target
2d3b26c3cd670c5cc28dced9f4221930_JaffaCakes118
-
Size
1.1MB
-
Sample
240510-elbdyahg6v
-
MD5
2d3b26c3cd670c5cc28dced9f4221930
-
SHA1
8e50873d8708a5c1678af6c11c7f86434b734b05
-
SHA256
d25effddc3389662f0f85116f6967db247f5fac49af14b5cbe2a10b9175bf761
-
SHA512
4d3276ffd1770a202602cc3cac27efa7ccec0a9b32528c0ff0df4457db213bc2309f87067ff790bccd640bb0d0d7ff96019ce483e1d2318c4daf04d74dd682f4
-
SSDEEP
24576:ecWdcRqqXDRypx3iTY+5qWkEQrtEoH4PC40RtO:ec5mdjeoHsC3PO
Malware Config
Targets
-
-
Target
2d3b26c3cd670c5cc28dced9f4221930_JaffaCakes118
-
Size
1.1MB
-
MD5
2d3b26c3cd670c5cc28dced9f4221930
-
SHA1
8e50873d8708a5c1678af6c11c7f86434b734b05
-
SHA256
d25effddc3389662f0f85116f6967db247f5fac49af14b5cbe2a10b9175bf761
-
SHA512
4d3276ffd1770a202602cc3cac27efa7ccec0a9b32528c0ff0df4457db213bc2309f87067ff790bccd640bb0d0d7ff96019ce483e1d2318c4daf04d74dd682f4
-
SSDEEP
24576:ecWdcRqqXDRypx3iTY+5qWkEQrtEoH4PC40RtO:ec5mdjeoHsC3PO
Score7/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-