General
-
Target
92cd05fe97ff58b77c3fe5f4ab387097_JaffaCakes118
-
Size
392KB
-
Sample
240813-m79smazdpf
-
MD5
92cd05fe97ff58b77c3fe5f4ab387097
-
SHA1
c866ec6438a92ec72a8ef92e6c0b870212ca3ba7
-
SHA256
ccbc1640edcd763fdfd7619a6c23ca758960f2754648a631561672f07c338839
-
SHA512
8ef3d551cf2e40b9dd06e1882768fbcb25da924db7556fc74bdc2b2d08639e999769eeff829d9404f251e37849018e2b89118783a6fd32536a16f66660200fd9
-
SSDEEP
6144:9WOohQ73IcHTFFQYWIMi8dfxTmuPTMBa/Y6VyB5Fict1LBT3iIAZsbnJuf:9vqCFCIMdZwuPTkKfVyBltKibnMf
Static task
static1
Behavioral task
behavioral1
Sample
92cd05fe97ff58b77c3fe5f4ab387097_JaffaCakes118.exe
Resource
win7-20240705-en
Malware Config
Extracted
darkcomet
Guest16
127.0.0.1:1604
DC_MUTEX-Q5320C4
-
gencode
hnfcjjPYAzGF
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
92cd05fe97ff58b77c3fe5f4ab387097_JaffaCakes118
-
Size
392KB
-
MD5
92cd05fe97ff58b77c3fe5f4ab387097
-
SHA1
c866ec6438a92ec72a8ef92e6c0b870212ca3ba7
-
SHA256
ccbc1640edcd763fdfd7619a6c23ca758960f2754648a631561672f07c338839
-
SHA512
8ef3d551cf2e40b9dd06e1882768fbcb25da924db7556fc74bdc2b2d08639e999769eeff829d9404f251e37849018e2b89118783a6fd32536a16f66660200fd9
-
SSDEEP
6144:9WOohQ73IcHTFFQYWIMi8dfxTmuPTMBa/Y6VyB5Fict1LBT3iIAZsbnJuf:9vqCFCIMdZwuPTkKfVyBltKibnMf
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
Drops file in System32 directory
-