General
-
Target
72b3f3a5405bbac26b8580968ce21d06_JaffaCakes118
-
Size
260KB
-
Sample
240525-vyb41acc38
-
MD5
72b3f3a5405bbac26b8580968ce21d06
-
SHA1
5277e0ece0254537321f1a9760557244289aee35
-
SHA256
131db693f4ce4234c7fe3eccc7cd36c43511bd0906024fcbcbbfcf6076bbcdae
-
SHA512
5d36995ae339ce376e05af8c4782c6b8236026a5c6ed94bde53ead63ac9ff3c5d8d836b78b4692f422bc4b0ac1c7c896b22995c2511d650fd7c73a455c6ee965
-
SSDEEP
6144:OvZjekT2WPSq/L5YQetVjkxlbccPFdlRvUr/j:ORSkPJ/lYQetwvDMr/j
Malware Config
Targets
-
-
Target
72b3f3a5405bbac26b8580968ce21d06_JaffaCakes118
-
Size
260KB
-
MD5
72b3f3a5405bbac26b8580968ce21d06
-
SHA1
5277e0ece0254537321f1a9760557244289aee35
-
SHA256
131db693f4ce4234c7fe3eccc7cd36c43511bd0906024fcbcbbfcf6076bbcdae
-
SHA512
5d36995ae339ce376e05af8c4782c6b8236026a5c6ed94bde53ead63ac9ff3c5d8d836b78b4692f422bc4b0ac1c7c896b22995c2511d650fd7c73a455c6ee965
-
SSDEEP
6144:OvZjekT2WPSq/L5YQetVjkxlbccPFdlRvUr/j:ORSkPJ/lYQetwvDMr/j
Score7/10-
Executes dropped EXE
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-