General
-
Target
9d7fda990024fb6b4e06a1b938db5e99_JaffaCakes118
-
Size
2.3MB
-
Sample
240611-jv525azcmg
-
MD5
9d7fda990024fb6b4e06a1b938db5e99
-
SHA1
e6a898c41f8db898b25c1015b99e3a3c3902a978
-
SHA256
d7aea015d53190b9a51bfb6d989eecb5a52881be53ec923e59d2044733e239e7
-
SHA512
375cb1c2e36f62f86fe8c0f29a3bc6bcc09b63acf466c996635b30d69aef9fd272add1fea644a7611a74cb51f953d3cf9fe3d3b7128dccc6b0f5f5f83452ed2f
-
SSDEEP
49152:8JKw7wbxOMfgQRFj2lSkXcI3YhPBbKI3ToeqgYQFMk+eg5j:8JUbxOGFj/kccQPz7YiMhp
Malware Config
Targets
-
-
Target
Gamersky_Crysis3.12Tr-LNG_HunterED_v1.3/Crysis3+12Tr-LNG_HunterED_v1.3.exe
-
Size
2.4MB
-
MD5
d98d7eb3d63987e56c79202861c9dce6
-
SHA1
622362b42592aba1afe63499fcb46db5e2404c7d
-
SHA256
5c0ea817287b4d2e003eadf306d7bbc4ccc47469f3c64969bb14a62b17c2fcda
-
SHA512
d3b7628ec450de71b382c0cea969f7b1318a82b6203e3c4c0d5f455c5df56c088fca6849f79578500dfed3e96b22a0d0074306633369b04d3e1eb48ed5a3a107
-
SSDEEP
49152:gadnNPBeJTt5285zE4prRsJ5XgCE8rnOi55YYPw:gadNPQ/285prRsJ5XgMrnOi55Y
Score6/10-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
-
-
Target
Gamersky_Crysis3.12Tr-LNG_HunterED_v1.3/游民星空 Gamersky.com.url
-
Size
265B
-
MD5
1e2afd10cc59022d1a1e5e5955785cda
-
SHA1
84ea7f39095f37ff5445339a35e6327db4482425
-
SHA256
b5054e502905b23515956517ea3229e47fe4e1d7e66e0c59f06f927a6bdb25d8
-
SHA512
add05dfcf5e4d044e749611d1bba138eb11ecf42b6a37636efc9c2f5f8f3def71437d497e4e90c873dc81412385b742f097d69a045505e822db4ade75cc30e84
Score1/10 -