General
-
Target
8b7afbf969f5ce6ef302598527b659c4_JaffaCakes118
-
Size
73KB
-
Sample
240601-xxa7esch83
-
MD5
8b7afbf969f5ce6ef302598527b659c4
-
SHA1
c6b3f2129633f4466e4fb057e2a7be129aa219d6
-
SHA256
85c978e424db708f56da60386662ec89c7d9a29dd59e4e737136e6f76f5600a6
-
SHA512
f0c14fa1beb90997c24ac776fb5fc533993db17f1544a2a4e0d0532c53897fc59f9f1b6f3b9ac86331374c772aa50878387a13bce7944bd952dc4fe85fc7afc9
-
SSDEEP
1536:+55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:UMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
8b7afbf969f5ce6ef302598527b659c4_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
8b7afbf969f5ce6ef302598527b659c4_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
8b7afbf969f5ce6ef302598527b659c4_JaffaCakes118
-
Size
73KB
-
MD5
8b7afbf969f5ce6ef302598527b659c4
-
SHA1
c6b3f2129633f4466e4fb057e2a7be129aa219d6
-
SHA256
85c978e424db708f56da60386662ec89c7d9a29dd59e4e737136e6f76f5600a6
-
SHA512
f0c14fa1beb90997c24ac776fb5fc533993db17f1544a2a4e0d0532c53897fc59f9f1b6f3b9ac86331374c772aa50878387a13bce7944bd952dc4fe85fc7afc9
-
SSDEEP
1536:+55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:UMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-