General
-
Target
8dad424addb70e3cca4ac059a954934c_JaffaCakes118
-
Size
302KB
-
Sample
240602-lylh1aae58
-
MD5
8dad424addb70e3cca4ac059a954934c
-
SHA1
784899ac5bd24102a60b3e1aef07997cc6f8c87c
-
SHA256
df9f17fe77dfe2b670bfc9802a483e53e6bcbd703cc9e60064d0d591fcb2a0ad
-
SHA512
6843e5b38375667086c889a5baff645a3d6c8c8e9f351ff1e25fe8be16c7d8d7993fa767da20ded1d866983fbed424a0bd364fa2c53528433666b22f52f3c600
-
SSDEEP
3072:mBA/6WEMymdhdmledaPvl2mAg0FujcSzZ83vPudl1wpMICzTQk6gnEi1UAJ9urHz:OsYMcBHAO4yZX/vQk6gEQUAJ9h6CcjL
Static task
static1
Behavioral task
behavioral1
Sample
8dad424addb70e3cca4ac059a954934c_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
8dad424addb70e3cca4ac059a954934c_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
8dad424addb70e3cca4ac059a954934c_JaffaCakes118
-
Size
302KB
-
MD5
8dad424addb70e3cca4ac059a954934c
-
SHA1
784899ac5bd24102a60b3e1aef07997cc6f8c87c
-
SHA256
df9f17fe77dfe2b670bfc9802a483e53e6bcbd703cc9e60064d0d591fcb2a0ad
-
SHA512
6843e5b38375667086c889a5baff645a3d6c8c8e9f351ff1e25fe8be16c7d8d7993fa767da20ded1d866983fbed424a0bd364fa2c53528433666b22f52f3c600
-
SSDEEP
3072:mBA/6WEMymdhdmledaPvl2mAg0FujcSzZ83vPudl1wpMICzTQk6gnEi1UAJ9urHz:OsYMcBHAO4yZX/vQk6gEQUAJ9h6CcjL
Score10/10-
GandCrab payload
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-