General
-
Target
43f00916cb8a9e17ca136b9b3e50e618_JaffaCakes118
-
Size
3.8MB
-
Sample
240515-bpbbkaad94
-
MD5
43f00916cb8a9e17ca136b9b3e50e618
-
SHA1
50e2b09d2944fb1151bf80e1774eda0585d0cca5
-
SHA256
39feda513afbf69cad0ee1209c460adddcbb081fabe97f9c26fe6aee123c8cf8
-
SHA512
e698e85992d8c5bd17a2cf0312fa67fae0afb8a0ab2ddb4e1f4f8f93868596c056e048118110cf94fdf09662449da52b09993f342adf184750cea44b841263ef
-
SSDEEP
98304:/dNo8zD/ygRku8weSODZmQ9mA1SSmBdwyJRKvzvA0G:1G6IJ7AQ9mIedRU
Behavioral task
behavioral1
Sample
43f00916cb8a9e17ca136b9b3e50e618_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
43f00916cb8a9e17ca136b9b3e50e618_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
43f00916cb8a9e17ca136b9b3e50e618_JaffaCakes118
-
Size
3.8MB
-
MD5
43f00916cb8a9e17ca136b9b3e50e618
-
SHA1
50e2b09d2944fb1151bf80e1774eda0585d0cca5
-
SHA256
39feda513afbf69cad0ee1209c460adddcbb081fabe97f9c26fe6aee123c8cf8
-
SHA512
e698e85992d8c5bd17a2cf0312fa67fae0afb8a0ab2ddb4e1f4f8f93868596c056e048118110cf94fdf09662449da52b09993f342adf184750cea44b841263ef
-
SSDEEP
98304:/dNo8zD/ygRku8weSODZmQ9mA1SSmBdwyJRKvzvA0G:1G6IJ7AQ9mIedRU
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-