General
-
Target
6faa8ad1cf9c3e754aabc59419035232_JaffaCakes118
-
Size
752KB
-
Sample
240725-p6tq5azcqj
-
MD5
6faa8ad1cf9c3e754aabc59419035232
-
SHA1
06ed5d4231e5352350db81f0e13b0d8ad7cc038c
-
SHA256
32a2dc0cf730ced28c1d5c2c31b4b5d0913f36cffe70d3a712a98c7b88b9beba
-
SHA512
2f94251ddc81a3ed9321e93c5f08ac983fcae8d6d1d4ebf7352547336ecd5ebb74d5bedd2827165143b40a6bd6008aacf290c9c67145fa13e151cd6b6466d490
-
SSDEEP
12288:1Gf4gSbdt6CuWaj+g81P2PHVIUkF7hnjrnCLWSC1vzRKgYpMuO1Fmk4/ZuMa+Z:1Gf4LDuWpgiPeIUkF7ljrnxSC1vzRl2p
Malware Config
Targets
-
-
Target
6faa8ad1cf9c3e754aabc59419035232_JaffaCakes118
-
Size
752KB
-
MD5
6faa8ad1cf9c3e754aabc59419035232
-
SHA1
06ed5d4231e5352350db81f0e13b0d8ad7cc038c
-
SHA256
32a2dc0cf730ced28c1d5c2c31b4b5d0913f36cffe70d3a712a98c7b88b9beba
-
SHA512
2f94251ddc81a3ed9321e93c5f08ac983fcae8d6d1d4ebf7352547336ecd5ebb74d5bedd2827165143b40a6bd6008aacf290c9c67145fa13e151cd6b6466d490
-
SSDEEP
12288:1Gf4gSbdt6CuWaj+g81P2PHVIUkF7hnjrnCLWSC1vzRKgYpMuO1Fmk4/ZuMa+Z:1Gf4LDuWpgiPeIUkF7ljrnxSC1vzRl2p
Score7/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-