General
-
Target
7b5bc6690c4ef0e7545246b267e837fb_JaffaCakes118
-
Size
4.7MB
-
Sample
240528-crd1xabb6z
-
MD5
7b5bc6690c4ef0e7545246b267e837fb
-
SHA1
25b30ce97b474cfd4f0c34fce99f0bc135056d69
-
SHA256
8ecdda25141db4060df287c0d53fa38083b903e8b105e7c25e3fbb6bad3fb431
-
SHA512
dbde3b4261bfe30c2c05b120b98c033970a4e64dfd6591387aac9f2fd23900b8a73ae18c5b8720433d8491f6fbd8f3320d66d99d2440f2d58f202cac3eecf279
-
SSDEEP
98304:Ae4d8iEityhkhqloaxeq7jhIXUvPBnnom2LSqLyl:nCnyhkhBaxem1tPBn2uqg
Behavioral task
behavioral1
Sample
7b5bc6690c4ef0e7545246b267e837fb_JaffaCakes118.exe
Resource
win7-20231129-en
Malware Config
Targets
-
-
Target
7b5bc6690c4ef0e7545246b267e837fb_JaffaCakes118
-
Size
4.7MB
-
MD5
7b5bc6690c4ef0e7545246b267e837fb
-
SHA1
25b30ce97b474cfd4f0c34fce99f0bc135056d69
-
SHA256
8ecdda25141db4060df287c0d53fa38083b903e8b105e7c25e3fbb6bad3fb431
-
SHA512
dbde3b4261bfe30c2c05b120b98c033970a4e64dfd6591387aac9f2fd23900b8a73ae18c5b8720433d8491f6fbd8f3320d66d99d2440f2d58f202cac3eecf279
-
SSDEEP
98304:Ae4d8iEityhkhqloaxeq7jhIXUvPBnnom2LSqLyl:nCnyhkhBaxem1tPBn2uqg
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-