General
-
Target
bcc2dceb573058af03d082e75815cd9e_JaffaCakes118
-
Size
604KB
-
Sample
240618-tbv3xszflh
-
MD5
bcc2dceb573058af03d082e75815cd9e
-
SHA1
c1b63e647816c1a82ed6be0ffccc43a382ed212f
-
SHA256
780d12f76aea1e41ad2bc74b55deee50e81bfc1ef4917ecbaeac42a219b4edb9
-
SHA512
01214c98c884cfc0069261a6564f57c1b23186caff5e183cfd33b318acba25e0ecc0ac94591f58a487370d47e382b36575a226aba9df7c7ae8dd45ed862f8f84
-
SSDEEP
12288:jfa4IPlHIvivA5QpSLLOEkMJAPL3V7z/Op5g4k:jf/IxlveQpSLLOLMJiLF7rOp5n
Static task
static1
Behavioral task
behavioral1
Sample
bcc2dceb573058af03d082e75815cd9e_JaffaCakes118.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
bcc2dceb573058af03d082e75815cd9e_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
bcc2dceb573058af03d082e75815cd9e_JaffaCakes118
-
Size
604KB
-
MD5
bcc2dceb573058af03d082e75815cd9e
-
SHA1
c1b63e647816c1a82ed6be0ffccc43a382ed212f
-
SHA256
780d12f76aea1e41ad2bc74b55deee50e81bfc1ef4917ecbaeac42a219b4edb9
-
SHA512
01214c98c884cfc0069261a6564f57c1b23186caff5e183cfd33b318acba25e0ecc0ac94591f58a487370d47e382b36575a226aba9df7c7ae8dd45ed862f8f84
-
SSDEEP
12288:jfa4IPlHIvivA5QpSLLOEkMJAPL3V7z/Op5g4k:jf/IxlveQpSLLOLMJiLF7rOp5n
Score7/10-
Accesses Microsoft Outlook profiles
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Suspicious use of SetThreadContext
-