General
-
Target
306478400652eaf4d3472cdbd46ccf5a_JaffaCakes118
-
Size
70KB
-
Sample
240709-pr319awcjh
-
MD5
306478400652eaf4d3472cdbd46ccf5a
-
SHA1
ab8e761ec942f79d3b8e2fc7b5789e6ef16f5b81
-
SHA256
6e777869ed49a326b47ecaa681188733409d532467c6c615e89a6da808658d14
-
SHA512
e38e4a34200c251505255da3bf34d598e0b8aedf65f4b12927136b311508337ba29a89d5cb2112f79f7b2b000872b2f670bf441e657baf7ce974200de3f8131c
-
SSDEEP
1536:wcs/+FHdM17JnqH+vpNJDC+RXKEU2kb8rn22FNw0ekwx3NZAt7V0:A+F9MvQ+nJZxKB3b8rnBBPwxOy
Malware Config
Targets
-
-
Target
306478400652eaf4d3472cdbd46ccf5a_JaffaCakes118
-
Size
70KB
-
MD5
306478400652eaf4d3472cdbd46ccf5a
-
SHA1
ab8e761ec942f79d3b8e2fc7b5789e6ef16f5b81
-
SHA256
6e777869ed49a326b47ecaa681188733409d532467c6c615e89a6da808658d14
-
SHA512
e38e4a34200c251505255da3bf34d598e0b8aedf65f4b12927136b311508337ba29a89d5cb2112f79f7b2b000872b2f670bf441e657baf7ce974200de3f8131c
-
SSDEEP
1536:wcs/+FHdM17JnqH+vpNJDC+RXKEU2kb8rn22FNw0ekwx3NZAt7V0:A+F9MvQ+nJZxKB3b8rnBBPwxOy
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Blocklisted process makes network request
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-