General
-
Target
98b5ae6415f2885aaee685640acc13fd_JaffaCakes118
-
Size
1.1MB
-
Sample
240605-vlzdrsce8s
-
MD5
98b5ae6415f2885aaee685640acc13fd
-
SHA1
d28d7efe9f1e6acbf6a8d8bf4e765282e5c691df
-
SHA256
4dc7950708e53e81478d72c12912689bd3ad52ae5249788c290d03a6f66db601
-
SHA512
78117542381c9278c3b7b394d44b0848aa44912fd0d0a6e3defa6438eef3e3e430a7dc433490d3fb6103ef8253f0b790e209a4b021e8af1f8e89a040d2e730e8
-
SSDEEP
24576:o88FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wW:o8fRbE2VolvZW
Malware Config
Targets
-
-
Target
98b5ae6415f2885aaee685640acc13fd_JaffaCakes118
-
Size
1.1MB
-
MD5
98b5ae6415f2885aaee685640acc13fd
-
SHA1
d28d7efe9f1e6acbf6a8d8bf4e765282e5c691df
-
SHA256
4dc7950708e53e81478d72c12912689bd3ad52ae5249788c290d03a6f66db601
-
SHA512
78117542381c9278c3b7b394d44b0848aa44912fd0d0a6e3defa6438eef3e3e430a7dc433490d3fb6103ef8253f0b790e209a4b021e8af1f8e89a040d2e730e8
-
SSDEEP
24576:o88FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wW:o8fRbE2VolvZW
Score7/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Loads dropped DLL
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-