General
-
Target
8992b90638695ee9bd2cb0c1a34fd736_JaffaCakes118
-
Size
4.7MB
-
Sample
240601-gxz8jscd4v
-
MD5
8992b90638695ee9bd2cb0c1a34fd736
-
SHA1
813b310e6d7f2416982e979c2666926f83ccc139
-
SHA256
57106f5352619574d2b4268cc3ec3a0228f4086fc3d3fcf0dd212aa11acbf57c
-
SHA512
01f9cf06a15e8a8e3de3acf2484a37d3dc552d4e8e0b3668dc0d6ed0059bf7ec05af38994befc14a8d3e3feca01239cc73ef101eac2cdcd87517d849aca4f7e7
-
SSDEEP
98304:Tl88udp4A2evUNGnVuUwGLVWy0/OQmjmUah6rpHDF1:yzDiNyiXfGDvv1
Behavioral task
behavioral1
Sample
8992b90638695ee9bd2cb0c1a34fd736_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
8992b90638695ee9bd2cb0c1a34fd736_JaffaCakes118
-
Size
4.7MB
-
MD5
8992b90638695ee9bd2cb0c1a34fd736
-
SHA1
813b310e6d7f2416982e979c2666926f83ccc139
-
SHA256
57106f5352619574d2b4268cc3ec3a0228f4086fc3d3fcf0dd212aa11acbf57c
-
SHA512
01f9cf06a15e8a8e3de3acf2484a37d3dc552d4e8e0b3668dc0d6ed0059bf7ec05af38994befc14a8d3e3feca01239cc73ef101eac2cdcd87517d849aca4f7e7
-
SSDEEP
98304:Tl88udp4A2evUNGnVuUwGLVWy0/OQmjmUah6rpHDF1:yzDiNyiXfGDvv1
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-