General
-
Target
752be5fff55e3a059d9ec4be816d11a4_JaffaCakes118
-
Size
693KB
-
Sample
240526-meszeaeh9s
-
MD5
752be5fff55e3a059d9ec4be816d11a4
-
SHA1
e2f14b56875eb1e3ce4a2b3bd2ec92488eb51b84
-
SHA256
a65e1e7ff8c9c03d3fa3abf621bbf69db210c1a437aebbe98a0da3b41518b698
-
SHA512
b8c25e60c25303b212e986339d29f0b75fbaafacaef99848955b1e984603eb59102f00ac94cc22cc4c487fd9ecc34920f04f1599a543dd5643f8048c512f1b20
-
SSDEEP
12288:rl1Ey2RgKt9rtmapruAbE7qO4R1F2LjBioLAuny:rlSmK7tm8qO3O43FYBNLAuy
Static task
static1
Behavioral task
behavioral1
Sample
752be5fff55e3a059d9ec4be816d11a4_JaffaCakes118.exe
Resource
win7-20240508-en
Malware Config
Extracted
buer
https://bankcreditsign.com/
Targets
-
-
Target
752be5fff55e3a059d9ec4be816d11a4_JaffaCakes118
-
Size
693KB
-
MD5
752be5fff55e3a059d9ec4be816d11a4
-
SHA1
e2f14b56875eb1e3ce4a2b3bd2ec92488eb51b84
-
SHA256
a65e1e7ff8c9c03d3fa3abf621bbf69db210c1a437aebbe98a0da3b41518b698
-
SHA512
b8c25e60c25303b212e986339d29f0b75fbaafacaef99848955b1e984603eb59102f00ac94cc22cc4c487fd9ecc34920f04f1599a543dd5643f8048c512f1b20
-
SSDEEP
12288:rl1Ey2RgKt9rtmapruAbE7qO4R1F2LjBioLAuny:rlSmK7tm8qO3O43FYBNLAuy
-
Command and Scripting Interpreter: PowerShell
Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-