General
-
Target
87f1a97dab2e9264c37616833ec633fd_JaffaCakes118
-
Size
51KB
-
Sample
240810-2hctxs1gmp
-
MD5
87f1a97dab2e9264c37616833ec633fd
-
SHA1
c61ecc9cbab2c31c3dfd4b3c2a199fe5d7d97967
-
SHA256
447ccc32a4aa9ab2f81fa3e45e5b57e229ae4268164903ee9ecd2e8aa92c37b4
-
SHA512
fd7fcac352ccd5d4948ff8e326700b5b6884f35b2100d73e9bb86c5840012e3eec0bd570582dae64f134d41e66fc6bfe12f700dbce1e0a23137889f8970d0e5f
-
SSDEEP
1536:jiO+4kuJG96oWF5E3AThRFFrMPH8/UsURnYXnLc2:jiOrxJDB5EwTtFAH88sUVYXH
Malware Config
Targets
-
-
Target
87f1a97dab2e9264c37616833ec633fd_JaffaCakes118
-
Size
51KB
-
MD5
87f1a97dab2e9264c37616833ec633fd
-
SHA1
c61ecc9cbab2c31c3dfd4b3c2a199fe5d7d97967
-
SHA256
447ccc32a4aa9ab2f81fa3e45e5b57e229ae4268164903ee9ecd2e8aa92c37b4
-
SHA512
fd7fcac352ccd5d4948ff8e326700b5b6884f35b2100d73e9bb86c5840012e3eec0bd570582dae64f134d41e66fc6bfe12f700dbce1e0a23137889f8970d0e5f
-
SSDEEP
1536:jiO+4kuJG96oWF5E3AThRFFrMPH8/UsURnYXnLc2:jiOrxJDB5EwTtFAH88sUVYXH
Score10/10-
Modifies WinLogon for persistence
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-