General
-
Target
6f09a39f80775d95a0d1094783947b23_JaffaCakes118
-
Size
328KB
-
Sample
240524-s9x5habd92
-
MD5
6f09a39f80775d95a0d1094783947b23
-
SHA1
b098b9b9d2589b74d927842548099af3ffb2e95f
-
SHA256
d4415ea839f5075509cb9febccaa33271f3d7a9b232e82ecb35eb42b02c35603
-
SHA512
5b4b62405afdbcc40530b9084826711f408f4b90f06b79510750adec33b79bb00554189bcf17520f20b2e50ab0afa53457288d5635e8f62d2804fc0b07322ae3
-
SSDEEP
6144:jaacHKdqjGm9RmnhAOsox4vRccFdDfL3lov/EveHHIHLDGltd:jazKsjn0hFxGJL1ov/EWIriltd
Static task
static1
Behavioral task
behavioral1
Sample
6f09a39f80775d95a0d1094783947b23_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
6f09a39f80775d95a0d1094783947b23_JaffaCakes118.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
6f09a39f80775d95a0d1094783947b23_JaffaCakes118
-
Size
328KB
-
MD5
6f09a39f80775d95a0d1094783947b23
-
SHA1
b098b9b9d2589b74d927842548099af3ffb2e95f
-
SHA256
d4415ea839f5075509cb9febccaa33271f3d7a9b232e82ecb35eb42b02c35603
-
SHA512
5b4b62405afdbcc40530b9084826711f408f4b90f06b79510750adec33b79bb00554189bcf17520f20b2e50ab0afa53457288d5635e8f62d2804fc0b07322ae3
-
SSDEEP
6144:jaacHKdqjGm9RmnhAOsox4vRccFdDfL3lov/EveHHIHLDGltd:jazKsjn0hFxGJL1ov/EWIriltd
Score10/10-
GandCrab payload
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-