General
-
Target
a2b0ff540a133a2f10b9dec4a0413207_JaffaCakes118
-
Size
1.1MB
-
Sample
240612-2ctkgsshlb
-
MD5
a2b0ff540a133a2f10b9dec4a0413207
-
SHA1
6943129e81b46de74f6b0883969b5875ed71884b
-
SHA256
f5b4e3b9a3546a7fd29835ea6a049069789c3108fe363cd68fd3470e0df5af43
-
SHA512
3dfc5e546c1b8a2a3f6795045b7d1642880282148fcbcfc44c03901296f572b1e3d14f4602958a58f5032b25c5ccb5d20f4975852e18c3b2deeb2b124e4524f4
-
SSDEEP
24576:aMjtdFF1r7tQLf/9fOeEfJkgvvEEWhtkk9vrin:FjtHf1oJA1iWyvr
Static task
static1
Behavioral task
behavioral1
Sample
a2b0ff540a133a2f10b9dec4a0413207_JaffaCakes118.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
a2b0ff540a133a2f10b9dec4a0413207_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
a2b0ff540a133a2f10b9dec4a0413207_JaffaCakes118
-
Size
1.1MB
-
MD5
a2b0ff540a133a2f10b9dec4a0413207
-
SHA1
6943129e81b46de74f6b0883969b5875ed71884b
-
SHA256
f5b4e3b9a3546a7fd29835ea6a049069789c3108fe363cd68fd3470e0df5af43
-
SHA512
3dfc5e546c1b8a2a3f6795045b7d1642880282148fcbcfc44c03901296f572b1e3d14f4602958a58f5032b25c5ccb5d20f4975852e18c3b2deeb2b124e4524f4
-
SSDEEP
24576:aMjtdFF1r7tQLf/9fOeEfJkgvvEEWhtkk9vrin:FjtHf1oJA1iWyvr
Score7/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-