General
-
Target
97a27a383ab6b15c93f2ef510bf25c43_JaffaCakes118
-
Size
696KB
-
Sample
240814-zp6z8syenl
-
MD5
97a27a383ab6b15c93f2ef510bf25c43
-
SHA1
8edcae5f5d5a7f3961dd42928d78b5187bec83da
-
SHA256
cbb61e820ae13df931e046b3fd5d68ef16eea288a5664e661592261df9f42913
-
SHA512
96bf67e58cb23deeeccf5a082cf3d4a8e87fe3c325339972410641f539e2784831b60fa008e02576c62155bbc7fd06e7aa38c1be7864d5d4cd32c8ddb72850c0
-
SSDEEP
12288:5Zh6onR2doK5ZGaBnSM1oPZfnF390B9Cx9QcjEfWqkpuZCv:Dh6oR26K5QGSUoh9390BUQ1kUgv
Static task
static1
Behavioral task
behavioral1
Sample
97a27a383ab6b15c93f2ef510bf25c43_JaffaCakes118.exe
Resource
win7-20240708-en
Malware Config
Extracted
darkcomet
Guest16
shy1.no-ip.biz:871
DC_MUTEX-5NPX5F6
-
gencode
ixiLgxBEB1XM
-
install
false
-
offline_keylogger
true
-
password
aze123456
-
persistence
false
Targets
-
-
Target
97a27a383ab6b15c93f2ef510bf25c43_JaffaCakes118
-
Size
696KB
-
MD5
97a27a383ab6b15c93f2ef510bf25c43
-
SHA1
8edcae5f5d5a7f3961dd42928d78b5187bec83da
-
SHA256
cbb61e820ae13df931e046b3fd5d68ef16eea288a5664e661592261df9f42913
-
SHA512
96bf67e58cb23deeeccf5a082cf3d4a8e87fe3c325339972410641f539e2784831b60fa008e02576c62155bbc7fd06e7aa38c1be7864d5d4cd32c8ddb72850c0
-
SSDEEP
12288:5Zh6onR2doK5ZGaBnSM1oPZfnF390B9Cx9QcjEfWqkpuZCv:Dh6oR26K5QGSUoh9390BUQ1kUgv
-
Modifies firewall policy service
-
Modifies security service
-