General
-
Target
bcecb86f681fe916b0c9a696587527ab_JaffaCakes118
-
Size
139KB
-
Sample
240618-t5ja8awbjp
-
MD5
bcecb86f681fe916b0c9a696587527ab
-
SHA1
e3574e0e7ce71e9d1663e645c00307e297ae20b2
-
SHA256
7fe9c131e1c0617024f7cac68ff22e40df16a4a1791e9d62688fcfb10a69342e
-
SHA512
5602f91e6c24662f2c386047886003da9857e7ad86ea38445be448fbdd1104fc594bea961e7fe3a368e10c2d384087f54b354fe18fcfc053c5ad8b65784aebe8
-
SSDEEP
3072:K2+x+QMgSXupDSbLiAEqFKGC9fMJZ9pEv8cHMjoHIWj:FaTSeRSXKqwG3jEv3HXHI
Static task
static1
Behavioral task
behavioral1
Sample
bcecb86f681fe916b0c9a696587527ab_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
bcecb86f681fe916b0c9a696587527ab_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
njrat
0.7d
HacKed-hh
roro60600.ddns.net:5552
5d1c0015a497a83c7f6cb9874dd5fa25
-
reg_key
5d1c0015a497a83c7f6cb9874dd5fa25
-
splitter
|'|'|
Targets
-
-
Target
bcecb86f681fe916b0c9a696587527ab_JaffaCakes118
-
Size
139KB
-
MD5
bcecb86f681fe916b0c9a696587527ab
-
SHA1
e3574e0e7ce71e9d1663e645c00307e297ae20b2
-
SHA256
7fe9c131e1c0617024f7cac68ff22e40df16a4a1791e9d62688fcfb10a69342e
-
SHA512
5602f91e6c24662f2c386047886003da9857e7ad86ea38445be448fbdd1104fc594bea961e7fe3a368e10c2d384087f54b354fe18fcfc053c5ad8b65784aebe8
-
SSDEEP
3072:K2+x+QMgSXupDSbLiAEqFKGC9fMJZ9pEv8cHMjoHIWj:FaTSeRSXKqwG3jEv3HXHI
-
Modifies Windows Firewall
-
Drops startup file
-