General
-
Target
47d9e386e9d02847d408af2cbbfd6cef_JaffaCakes118
-
Size
5.8MB
-
Sample
240515-y2p2taac88
-
MD5
47d9e386e9d02847d408af2cbbfd6cef
-
SHA1
77eb1b1ede0bbc5bdbd6a8cac794494387a4b3da
-
SHA256
e1579f0edb7f727fce20a30bba70dde9ee234b60df068d81d967d8725ef8a2c9
-
SHA512
0a17f1e6dfa1b5213f9d7453b9325a6809b85309d31725106db24f25a65ad67cac72c451ccddea3e76274f039a9d1dd1a61af40c5061b2d121cce6b2fdc77da7
-
SSDEEP
98304:C6hZNmjrcbhF/aOIpTX/0Gj2Z9kUj1R1VeypA5KnTJXjEgAGe1k5O2PSp:C6hZNmjIhFZATy9Nj1R1V5eGTJXTA/
Malware Config
Targets
-
-
Target
47d9e386e9d02847d408af2cbbfd6cef_JaffaCakes118
-
Size
5.8MB
-
MD5
47d9e386e9d02847d408af2cbbfd6cef
-
SHA1
77eb1b1ede0bbc5bdbd6a8cac794494387a4b3da
-
SHA256
e1579f0edb7f727fce20a30bba70dde9ee234b60df068d81d967d8725ef8a2c9
-
SHA512
0a17f1e6dfa1b5213f9d7453b9325a6809b85309d31725106db24f25a65ad67cac72c451ccddea3e76274f039a9d1dd1a61af40c5061b2d121cce6b2fdc77da7
-
SSDEEP
98304:C6hZNmjrcbhF/aOIpTX/0Gj2Z9kUj1R1VeypA5KnTJXjEgAGe1k5O2PSp:C6hZNmjIhFZATy9Nj1R1V5eGTJXTA/
Score10/10-
Banload
Banload variants download malicious files, then install and execute the files.
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-