General
-
Target
a349bef0ed9119089be25909b2dbcef2_JaffaCakes118
-
Size
1.1MB
-
Sample
240613-be4v5aybpf
-
MD5
a349bef0ed9119089be25909b2dbcef2
-
SHA1
eab5160d95bb06feaa1dab2e60fa3f058cb4eaef
-
SHA256
b1ab161c5dbf5117b35b85f365f0b73d4df19075ccae7bc1bf983c32e3e1467d
-
SHA512
be1811d14cbe7c3db3463e66b945c58e99dfedb753b20eea50a0ecbbdea9b0db10f464c2ce6789e1143df467fecec3761e4e656916ea5d5b143e644dda712ec7
-
SSDEEP
24576:juqLIMOpZvOhVoUfe1u1N8468xORvm4widQjBZCxto6HRAkpdP:juqLIMOpxOheUguIj8xOB/ijGxG6HB
Static task
static1
Behavioral task
behavioral1
Sample
a349bef0ed9119089be25909b2dbcef2_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
a349bef0ed9119089be25909b2dbcef2_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
a349bef0ed9119089be25909b2dbcef2_JaffaCakes118
-
Size
1.1MB
-
MD5
a349bef0ed9119089be25909b2dbcef2
-
SHA1
eab5160d95bb06feaa1dab2e60fa3f058cb4eaef
-
SHA256
b1ab161c5dbf5117b35b85f365f0b73d4df19075ccae7bc1bf983c32e3e1467d
-
SHA512
be1811d14cbe7c3db3463e66b945c58e99dfedb753b20eea50a0ecbbdea9b0db10f464c2ce6789e1143df467fecec3761e4e656916ea5d5b143e644dda712ec7
-
SSDEEP
24576:juqLIMOpZvOhVoUfe1u1N8468xORvm4widQjBZCxto6HRAkpdP:juqLIMOpxOheUguIj8xOB/ijGxG6HB
Score7/10-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-