General
-
Target
92abee5615ea870036dc756f91d6c408_JaffaCakes118
-
Size
4.7MB
-
Sample
240603-wg7d9afd89
-
MD5
92abee5615ea870036dc756f91d6c408
-
SHA1
44f252de1a4a80e991e839dba2443b5f4a972f9e
-
SHA256
e99997cf17901305f7035e1dfabc93954bc14a52c543b76bc11960480f01040b
-
SHA512
e9126167e0749e2f0761fef828f0572e179989c6694d10c2d711607ff38ec37d5903a5716d3fc35e3d652c31f1a1ce0c68faf1d82bb5f6f6323097239f16d005
-
SSDEEP
98304:hjJP7a4N6UTDwmK6MiCRMxc5jXzIUJLKnsgTPgN+9zTha4YilLmzJoN:BJW4snP6ZOMW8UKfUN+RThMKLHN
Behavioral task
behavioral1
Sample
92abee5615ea870036dc756f91d6c408_JaffaCakes118.exe
Resource
win7-20240419-en
Malware Config
Targets
-
-
Target
92abee5615ea870036dc756f91d6c408_JaffaCakes118
-
Size
4.7MB
-
MD5
92abee5615ea870036dc756f91d6c408
-
SHA1
44f252de1a4a80e991e839dba2443b5f4a972f9e
-
SHA256
e99997cf17901305f7035e1dfabc93954bc14a52c543b76bc11960480f01040b
-
SHA512
e9126167e0749e2f0761fef828f0572e179989c6694d10c2d711607ff38ec37d5903a5716d3fc35e3d652c31f1a1ce0c68faf1d82bb5f6f6323097239f16d005
-
SSDEEP
98304:hjJP7a4N6UTDwmK6MiCRMxc5jXzIUJLKnsgTPgN+9zTha4YilLmzJoN:BJW4snP6ZOMW8UKfUN+RThMKLHN
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-