General
-
Target
91c80401460aa887cc62313cff3f6aa5_JaffaCakes118
-
Size
248KB
-
Sample
240603-pnakjaed5s
-
MD5
91c80401460aa887cc62313cff3f6aa5
-
SHA1
978954aa1461d493bb123e02f1a4d0878a827ca1
-
SHA256
029caaf4406caaf0cfb7fbd05288c9ce27f5cdc93b5a5f9c894a75ecd3c9beff
-
SHA512
b09f558c7345ed1c5889d1a5305a5d405f24672efaf73df8ef305ef71032822f05863f43db6fda0362d1ff4260f7785bd237c2ca55c8283cd47fd78186e744ca
-
SSDEEP
6144:Gr3529M1kD9cvq40Y4HG/Nrtk/kG6nsTLcte:Y4Qk5PmtK/R0mcte
Static task
static1
Behavioral task
behavioral1
Sample
91c80401460aa887cc62313cff3f6aa5_JaffaCakes118.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
91c80401460aa887cc62313cff3f6aa5_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
91c80401460aa887cc62313cff3f6aa5_JaffaCakes118
-
Size
248KB
-
MD5
91c80401460aa887cc62313cff3f6aa5
-
SHA1
978954aa1461d493bb123e02f1a4d0878a827ca1
-
SHA256
029caaf4406caaf0cfb7fbd05288c9ce27f5cdc93b5a5f9c894a75ecd3c9beff
-
SHA512
b09f558c7345ed1c5889d1a5305a5d405f24672efaf73df8ef305ef71032822f05863f43db6fda0362d1ff4260f7785bd237c2ca55c8283cd47fd78186e744ca
-
SSDEEP
6144:Gr3529M1kD9cvq40Y4HG/Nrtk/kG6nsTLcte:Y4Qk5PmtK/R0mcte
Score10/10-
GandCrab payload
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-