General
-
Target
8505676e1879826fcb2242f7a9935324_JaffaCakes118
-
Size
628KB
-
Sample
240530-1qnqqaaf5w
-
MD5
8505676e1879826fcb2242f7a9935324
-
SHA1
e12f69c9791a8eeb2fb334bf46cc07ff11c54559
-
SHA256
07ad5b9d0f28a98161305ceb8587f0c69ec4225d113ac8871cb1f8f3051d9717
-
SHA512
4d0f0ea73ffbcef6a5a5047531f3719965171871df8b01e680d8e7a66f8c49971c24006ff0f03c8f3d95e5b46ef44234607e85351e70cb065ab3a7f19a1c15ac
-
SSDEEP
12288:uYGzh9a/SEm15YgEIoUKCm9vuz76iK9KGdVhD/PReg:uYB/SL15QUt7DKgaVB4
Static task
static1
Behavioral task
behavioral1
Sample
8505676e1879826fcb2242f7a9935324_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
8505676e1879826fcb2242f7a9935324_JaffaCakes118
-
Size
628KB
-
MD5
8505676e1879826fcb2242f7a9935324
-
SHA1
e12f69c9791a8eeb2fb334bf46cc07ff11c54559
-
SHA256
07ad5b9d0f28a98161305ceb8587f0c69ec4225d113ac8871cb1f8f3051d9717
-
SHA512
4d0f0ea73ffbcef6a5a5047531f3719965171871df8b01e680d8e7a66f8c49971c24006ff0f03c8f3d95e5b46ef44234607e85351e70cb065ab3a7f19a1c15ac
-
SSDEEP
12288:uYGzh9a/SEm15YgEIoUKCm9vuz76iK9KGdVhD/PReg:uYB/SL15QUt7DKgaVB4
-
Expiro payload
-
Disables taskbar notifications via registry modification
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-