General
-
Target
40772e5a94825cfd44662553fded057a_JaffaCakes118
-
Size
340KB
-
Sample
240513-vc5t7afe66
-
MD5
40772e5a94825cfd44662553fded057a
-
SHA1
53a6e6371288ee3a66d5c492a35141bb483d00a7
-
SHA256
13f2389165a547f9799425f4fc811c85847074311b7b744d48fda7bbcb7a2c3b
-
SHA512
f459ba0f375d4521e67133db448ae5f647847343a4613a8acdfeb432a8d79147de26445113890cae673905a09e7c9e63b0a5f242ec08580445ebae008cfd3509
-
SSDEEP
6144:bexRVX3qSsl2qg9CRKNpFk2P/ykDQYEElvk2:bYaSsMq4CRKNpFBl9lvk2
Malware Config
Targets
-
-
Target
40772e5a94825cfd44662553fded057a_JaffaCakes118
-
Size
340KB
-
MD5
40772e5a94825cfd44662553fded057a
-
SHA1
53a6e6371288ee3a66d5c492a35141bb483d00a7
-
SHA256
13f2389165a547f9799425f4fc811c85847074311b7b744d48fda7bbcb7a2c3b
-
SHA512
f459ba0f375d4521e67133db448ae5f647847343a4613a8acdfeb432a8d79147de26445113890cae673905a09e7c9e63b0a5f242ec08580445ebae008cfd3509
-
SSDEEP
6144:bexRVX3qSsl2qg9CRKNpFk2P/ykDQYEElvk2:bYaSsMq4CRKNpFBl9lvk2
Score7/10-
Executes dropped EXE
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-