General
-
Target
230173973db68e650b07bb1545387eda_JaffaCakes118
-
Size
582KB
-
Sample
240703-tqv2gateqm
-
MD5
230173973db68e650b07bb1545387eda
-
SHA1
b9ed2d63b710ec3272946eb4bfe330e72d727a8d
-
SHA256
d5ddbbb3ede6357d8131a7832830fc6c069dcd92bff69fd1a005227db691268f
-
SHA512
d37910cda87571863f81a6347edc4bf68597006b87021fbd6535889b53019007fd4dbe3e4b49e766383a5a4f4e1edf24f3cb0e7a88ea551bf0e0f47c9fef375a
-
SSDEEP
12288:0zD491USK20T7p7Pu75XlBChuNoxyhm3z3xlhpzBvFQtG2FGvNhBAcac3y:EsXX0Tl7PuFGhuNoxyaz3xlzzXQtGlZG
Malware Config
Targets
-
-
Target
230173973db68e650b07bb1545387eda_JaffaCakes118
-
Size
582KB
-
MD5
230173973db68e650b07bb1545387eda
-
SHA1
b9ed2d63b710ec3272946eb4bfe330e72d727a8d
-
SHA256
d5ddbbb3ede6357d8131a7832830fc6c069dcd92bff69fd1a005227db691268f
-
SHA512
d37910cda87571863f81a6347edc4bf68597006b87021fbd6535889b53019007fd4dbe3e4b49e766383a5a4f4e1edf24f3cb0e7a88ea551bf0e0f47c9fef375a
-
SSDEEP
12288:0zD491USK20T7p7Pu75XlBChuNoxyhm3z3xlhpzBvFQtG2FGvNhBAcac3y:EsXX0Tl7PuFGhuNoxyaz3xlzzXQtGlZG
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-
-
-
Target
$PLUGINSDIR/adInstlPlg.dll
-
Size
84KB
-
MD5
dba1cde7067bacf4e6efe571481bcc00
-
SHA1
bcc771688f6269915b0c63645c779e5769f8bd7e
-
SHA256
3f4d0cab57f3b3fc80d26f7e32f0dbd2c06695cfc6ab70754b5ed1e7274de048
-
SHA512
fb6b0cd6b15ddacc7d411ed1c9f632ab77b33ded4206dc61d174d6449cf3d16691f88e3ee9c0734df4c71ea018b0ef8d723c7930639ad9209041b973075a5414
-
SSDEEP
1536:MBZjbAG1kCjv0rDrnPMKwJ1Ztdm2zP5CaLanaeomlu:MB6G1VWbPCrHdm2zP5C9naeb
Score3/10 -