General
-
Target
62493729d141ed9cee1c0c999bfbfddc_JaffaCakes118
-
Size
382KB
-
Sample
240722-h9mzeswark
-
MD5
62493729d141ed9cee1c0c999bfbfddc
-
SHA1
849b56f0280a46a2f507897a34f77360bdf34e35
-
SHA256
e850b299c9ed14f9012b6d0b6c291eec0f881e090e75909df49bedc332f93c0a
-
SHA512
dc86a1eb30d07966bbb4d4d9d86cf2ed334b83432f3741ec8ef647adaa90ba36c6b9ce90defb088c5867041ae4372df5cbf7033b582fc19d340f59289d14ed7c
-
SSDEEP
6144:a4vsJmqBqv0qAqfbyxDkNDFYYtAeAbkZwTagAq3l0+wmDGgC:agqBG0qAqGxGxoQZwTaFOGH
Malware Config
Targets
-
-
Target
62493729d141ed9cee1c0c999bfbfddc_JaffaCakes118
-
Size
382KB
-
MD5
62493729d141ed9cee1c0c999bfbfddc
-
SHA1
849b56f0280a46a2f507897a34f77360bdf34e35
-
SHA256
e850b299c9ed14f9012b6d0b6c291eec0f881e090e75909df49bedc332f93c0a
-
SHA512
dc86a1eb30d07966bbb4d4d9d86cf2ed334b83432f3741ec8ef647adaa90ba36c6b9ce90defb088c5867041ae4372df5cbf7033b582fc19d340f59289d14ed7c
-
SSDEEP
6144:a4vsJmqBqv0qAqfbyxDkNDFYYtAeAbkZwTagAq3l0+wmDGgC:agqBG0qAqGxGxoQZwTaFOGH
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-