General
-
Target
46e50a6a9c2f2845d945b4578ac81533_JaffaCakes118
-
Size
1.1MB
-
Sample
240515-tb7fysgg87
-
MD5
46e50a6a9c2f2845d945b4578ac81533
-
SHA1
3ca68bf9a2557bc24151b80bc6f4028913c4f634
-
SHA256
fe92c97bff7eec08e5386cade6c18930bc6f5b6a3f3ed5fa039bf44d510fdb3e
-
SHA512
de84794180d4ec3020da11c96bf07ec1de159a05a8bb741d1bf3ed628293d8328162e5e57445655f1ba23c0d4219f50cd63d52438d32a22ae10de06cd70483ed
-
SSDEEP
24576:Ttb20pkaCqT5TBWgNQ7ac3RLly3h7J6A:QVg5tQ7ac3khV5
Static task
static1
Behavioral task
behavioral1
Sample
46e50a6a9c2f2845d945b4578ac81533_JaffaCakes118.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
46e50a6a9c2f2845d945b4578ac81533_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
njrat
0.7.3
Lime
micocacolaagosto.webredirect.org:1996
chome.exe
-
reg_key
chome.exe
-
splitter
123
Targets
-
-
Target
46e50a6a9c2f2845d945b4578ac81533_JaffaCakes118
-
Size
1.1MB
-
MD5
46e50a6a9c2f2845d945b4578ac81533
-
SHA1
3ca68bf9a2557bc24151b80bc6f4028913c4f634
-
SHA256
fe92c97bff7eec08e5386cade6c18930bc6f5b6a3f3ed5fa039bf44d510fdb3e
-
SHA512
de84794180d4ec3020da11c96bf07ec1de159a05a8bb741d1bf3ed628293d8328162e5e57445655f1ba23c0d4219f50cd63d52438d32a22ae10de06cd70483ed
-
SSDEEP
24576:Ttb20pkaCqT5TBWgNQ7ac3RLly3h7J6A:QVg5tQ7ac3khV5
Score10/10-
Drops startup file
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-