General
-
Target
9607041cb218702312e8e1f066aee6f8_JaffaCakes118
-
Size
6.6MB
-
Sample
240604-ydabfsaa25
-
MD5
9607041cb218702312e8e1f066aee6f8
-
SHA1
f5ee3534732a34efb586c908a80d99220d8fbb5b
-
SHA256
4c752b864cade5be782178a9397f79e2c08152746eaff6efc94679bbd648577b
-
SHA512
1e107a750a3b2a6389b4a09f2112b1cd26a701bc714218922be52d1234ba63c3872a6fcce0dac2be49d4450d9e6412e2e5d5aa13e7b2de912efd7bbd71e5ed99
-
SSDEEP
196608:WpGu/lIOltK5wslSljZ5BArz5LltH04w1XHXrl+9a9b:Vu/lXkwSSld505Lcz1XHXh+Y9b
Behavioral task
behavioral1
Sample
9607041cb218702312e8e1f066aee6f8_JaffaCakes118.exe
Resource
win7-20240215-en
Malware Config
Targets
-
-
Target
9607041cb218702312e8e1f066aee6f8_JaffaCakes118
-
Size
6.6MB
-
MD5
9607041cb218702312e8e1f066aee6f8
-
SHA1
f5ee3534732a34efb586c908a80d99220d8fbb5b
-
SHA256
4c752b864cade5be782178a9397f79e2c08152746eaff6efc94679bbd648577b
-
SHA512
1e107a750a3b2a6389b4a09f2112b1cd26a701bc714218922be52d1234ba63c3872a6fcce0dac2be49d4450d9e6412e2e5d5aa13e7b2de912efd7bbd71e5ed99
-
SSDEEP
196608:WpGu/lIOltK5wslSljZ5BArz5LltH04w1XHXrl+9a9b:Vu/lXkwSSld505Lcz1XHXh+Y9b
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-