General
-
Target
22e9df3c203a691cb1409b374645f830_JaffaCakes118
-
Size
491KB
-
Sample
240703-s8n57sxelb
-
MD5
22e9df3c203a691cb1409b374645f830
-
SHA1
2c463775e95906b9d014571f6e7ac20b90f400d1
-
SHA256
d8c6c8321ddf595404e891e622bc166c7ca830ffcffc77251ce905adf4d8062d
-
SHA512
3642dbb576979045914e31918134db431fd12b3be6dfc3b2c91ac081a67d8c0d07202b588bbfd7684ca603b89e217ce333f48e83830cf05fc42b0165ed82aea1
-
SSDEEP
6144:5MM1+RyYp+BkmHsjqxkgSOItqHZ9BDQs72DeZUpBbHVe1EX3whZ9ez5YH2qplj:GR8Yp+BkmVrLBDQnHU1woVn
Malware Config
Targets
-
-
Target
22e9df3c203a691cb1409b374645f830_JaffaCakes118
-
Size
491KB
-
MD5
22e9df3c203a691cb1409b374645f830
-
SHA1
2c463775e95906b9d014571f6e7ac20b90f400d1
-
SHA256
d8c6c8321ddf595404e891e622bc166c7ca830ffcffc77251ce905adf4d8062d
-
SHA512
3642dbb576979045914e31918134db431fd12b3be6dfc3b2c91ac081a67d8c0d07202b588bbfd7684ca603b89e217ce333f48e83830cf05fc42b0165ed82aea1
-
SSDEEP
6144:5MM1+RyYp+BkmHsjqxkgSOItqHZ9BDQs72DeZUpBbHVe1EX3whZ9ez5YH2qplj:GR8Yp+BkmVrLBDQnHU1woVn
Score8/10-
Drops file in Drivers directory
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-