General
-
Target
a37f36122d114916f9662abc823165ba_JaffaCakes118
-
Size
6.2MB
-
Sample
240613-clc7esvakr
-
MD5
a37f36122d114916f9662abc823165ba
-
SHA1
03fb6791fabfb8066c659710a24000ffe06e82d9
-
SHA256
2bc3023537ffa967d0d218f04445cb96e25bf44de8d046b43a852678fe1c1e62
-
SHA512
a72a6247dfb8d377c50b3b27cb112335b7cb5628de31fe2933307c68a549fa14b46b6faa348514dc754fdeff9e0b899feb35ba1a0ed1ce928de28df0e2b59257
-
SSDEEP
98304:vM2bIXaxauN7F+ZduNx4Ikl9ZgH6oCrZD6LfYCdl5zDvFCaoFPzFf:tIX1SIGnklEXCFJgzgaoJ9
Behavioral task
behavioral1
Sample
a37f36122d114916f9662abc823165ba_JaffaCakes118.exe
Resource
win7-20231129-en
Malware Config
Targets
-
-
Target
a37f36122d114916f9662abc823165ba_JaffaCakes118
-
Size
6.2MB
-
MD5
a37f36122d114916f9662abc823165ba
-
SHA1
03fb6791fabfb8066c659710a24000ffe06e82d9
-
SHA256
2bc3023537ffa967d0d218f04445cb96e25bf44de8d046b43a852678fe1c1e62
-
SHA512
a72a6247dfb8d377c50b3b27cb112335b7cb5628de31fe2933307c68a549fa14b46b6faa348514dc754fdeff9e0b899feb35ba1a0ed1ce928de28df0e2b59257
-
SSDEEP
98304:vM2bIXaxauN7F+ZduNx4Ikl9ZgH6oCrZD6LfYCdl5zDvFCaoFPzFf:tIX1SIGnklEXCFJgzgaoJ9
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-