General
-
Target
bbb384c3a50438aaba6f2c2862615c1e_JaffaCakes118
-
Size
1.2MB
-
Sample
240618-nmktfawbnk
-
MD5
bbb384c3a50438aaba6f2c2862615c1e
-
SHA1
5865989973bf16ef51f1781e352fc7a8e0d34771
-
SHA256
f53672c3eb43c945e5987770f31dada604c8592bd75922f3b222e5b7f40c3a79
-
SHA512
15e9994774b29b06ef79f7aa254e8fe4229cd2727c2141669543680bb4b126315bff7121b7269ad3b353a3a6f140a8bf7bc3f3d473d1ccbf0b6e6f7c25a851ea
-
SSDEEP
24576:6ptzzR9axdnnZz8W/Jwro0FZa0NZghTE0v:+zznaJz8W/ydFNaR
Static task
static1
Behavioral task
behavioral1
Sample
bbb384c3a50438aaba6f2c2862615c1e_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
bbb384c3a50438aaba6f2c2862615c1e_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
bbb384c3a50438aaba6f2c2862615c1e_JaffaCakes118
-
Size
1.2MB
-
MD5
bbb384c3a50438aaba6f2c2862615c1e
-
SHA1
5865989973bf16ef51f1781e352fc7a8e0d34771
-
SHA256
f53672c3eb43c945e5987770f31dada604c8592bd75922f3b222e5b7f40c3a79
-
SHA512
15e9994774b29b06ef79f7aa254e8fe4229cd2727c2141669543680bb4b126315bff7121b7269ad3b353a3a6f140a8bf7bc3f3d473d1ccbf0b6e6f7c25a851ea
-
SSDEEP
24576:6ptzzR9axdnnZz8W/Jwro0FZa0NZghTE0v:+zznaJz8W/ydFNaR
-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-