General
-
Target
75208ea908e1db53293391ee16186f41_JaffaCakes118
-
Size
300KB
-
Sample
240526-l4bkzsee6t
-
MD5
75208ea908e1db53293391ee16186f41
-
SHA1
7bf24bff13cf3ac25edfbfcfe2c171620c8b79d9
-
SHA256
0b5fdb54a892ebb43546bec8a7f8f403010f9c549532d796ebc645465684d56b
-
SHA512
b0d0ca6c31f4bc6629a63d42423900a3f0ce2c48ee5d3881235ed5fec6b1579af2cb70cc9c9c35011ca5675a11a2877d074dcbc5c5f67fd7f6951a02da599a3a
-
SSDEEP
6144:284R1VpLhZPBQV9fAOsJSSGnTXyWKZ+uTPrN9xpeWE4:284R9hIV9fWGBXuTPh9xoD4
Static task
static1
Behavioral task
behavioral1
Sample
75208ea908e1db53293391ee16186f41_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
75208ea908e1db53293391ee16186f41_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
75208ea908e1db53293391ee16186f41_JaffaCakes118
-
Size
300KB
-
MD5
75208ea908e1db53293391ee16186f41
-
SHA1
7bf24bff13cf3ac25edfbfcfe2c171620c8b79d9
-
SHA256
0b5fdb54a892ebb43546bec8a7f8f403010f9c549532d796ebc645465684d56b
-
SHA512
b0d0ca6c31f4bc6629a63d42423900a3f0ce2c48ee5d3881235ed5fec6b1579af2cb70cc9c9c35011ca5675a11a2877d074dcbc5c5f67fd7f6951a02da599a3a
-
SSDEEP
6144:284R1VpLhZPBQV9fAOsJSSGnTXyWKZ+uTPrN9xpeWE4:284R9hIV9fWGBXuTPh9xoD4
Score10/10-
GandCrab payload
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-