General
-
Target
7af7345d71e5242cd93f2670a045182f_JaffaCakes118
-
Size
4.7MB
-
Sample
240527-3rzwgsee2w
-
MD5
7af7345d71e5242cd93f2670a045182f
-
SHA1
55e3b13ef057ff9fe19c946877947ccd3a0b7a5e
-
SHA256
291c00a1bc629c7e7f6577136ff95ed43612c0103ea8c0c1b069c1cb51c3f695
-
SHA512
ee106bc326e4a1d0eff997f4c3fe454acde99a9800cba884ec49d958a2d3ed9ae238f303d61bad1ca0678a02ac5e07057e4fddef9991684a3da40092148310da
-
SSDEEP
98304:YXfkMf4uBFeJ1QleIDHgbAfmQtPUpNCp5DORqMtaUljVUPXnCkyVtFN1Mr:+vQuneJ1QLHavQSpNCPD8qMQUlq4tFNw
Behavioral task
behavioral1
Sample
7af7345d71e5242cd93f2670a045182f_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
7af7345d71e5242cd93f2670a045182f_JaffaCakes118
-
Size
4.7MB
-
MD5
7af7345d71e5242cd93f2670a045182f
-
SHA1
55e3b13ef057ff9fe19c946877947ccd3a0b7a5e
-
SHA256
291c00a1bc629c7e7f6577136ff95ed43612c0103ea8c0c1b069c1cb51c3f695
-
SHA512
ee106bc326e4a1d0eff997f4c3fe454acde99a9800cba884ec49d958a2d3ed9ae238f303d61bad1ca0678a02ac5e07057e4fddef9991684a3da40092148310da
-
SSDEEP
98304:YXfkMf4uBFeJ1QleIDHgbAfmQtPUpNCp5DORqMtaUljVUPXnCkyVtFN1Mr:+vQuneJ1QLHavQSpNCPD8qMQUlq4tFNw
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-