General
-
Target
75e46df89a356a452c6c29a75964d3fc_JaffaCakes118
-
Size
1.5MB
-
Sample
240526-sl4x5sbe96
-
MD5
75e46df89a356a452c6c29a75964d3fc
-
SHA1
823e2d3ef005d36b1401472dd5fd687a652b81b0
-
SHA256
cb84010badac25e5bad6137e5f46f3ee05be2fea3bbb065fbbb18075e7ee5df1
-
SHA512
f4b56b6882e5fc9b5550a09694a1a456a305e8a7d84a9e5189ec1411e28166d1e120033101bca60c80dd9d0344017653aaec47c6bdc7057b3f7e4ade526c2119
-
SSDEEP
24576:OAHnh+eWsN3skA4RV1Hom2KXMmHaZLS6SQBCZNRrrBJXq2ceUgQAK/5:5h+ZkldoPK8YaZLSi
Static task
static1
Behavioral task
behavioral1
Sample
75e46df89a356a452c6c29a75964d3fc_JaffaCakes118.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
75e46df89a356a452c6c29a75964d3fc_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
75e46df89a356a452c6c29a75964d3fc_JaffaCakes118
-
Size
1.5MB
-
MD5
75e46df89a356a452c6c29a75964d3fc
-
SHA1
823e2d3ef005d36b1401472dd5fd687a652b81b0
-
SHA256
cb84010badac25e5bad6137e5f46f3ee05be2fea3bbb065fbbb18075e7ee5df1
-
SHA512
f4b56b6882e5fc9b5550a09694a1a456a305e8a7d84a9e5189ec1411e28166d1e120033101bca60c80dd9d0344017653aaec47c6bdc7057b3f7e4ade526c2119
-
SSDEEP
24576:OAHnh+eWsN3skA4RV1Hom2KXMmHaZLS6SQBCZNRrrBJXq2ceUgQAK/5:5h+ZkldoPK8YaZLSi
Score10/10-
Executes dropped EXE
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
AutoIT Executable
AutoIT scripts compiled to PE executables.
-
Suspicious use of SetThreadContext
-