General
-
Target
a0a79921711a4f4572a99c86f5c8da37_JaffaCakes118
-
Size
31KB
-
Sample
240817-bj3tmaycka
-
MD5
a0a79921711a4f4572a99c86f5c8da37
-
SHA1
60c74cc552a54b7c78d627302383d87e7d152d26
-
SHA256
9e5dc0d6155896bf1f79d0608bb7b3e079c3b2ab388dffa36eebe6c6a8416267
-
SHA512
4e72637284b2b4eecb78b3c6b94a27474610532d3002ca7577fce8f551ef5df8696626beeeaa14c6fdce55d4511da183bf47797f9c876a3daaf8c345f6680da8
-
SSDEEP
384:L/Ddxz0CSM0qd+1XwQeg9RWoQPFdvDh8VKxQjHZu//uL5Tli4ngmXBuOkr:jYCSZqdSAQ39IoAFFpxQ5uXuL5NpU
Malware Config
Targets
-
-
Target
a0a79921711a4f4572a99c86f5c8da37_JaffaCakes118
-
Size
31KB
-
MD5
a0a79921711a4f4572a99c86f5c8da37
-
SHA1
60c74cc552a54b7c78d627302383d87e7d152d26
-
SHA256
9e5dc0d6155896bf1f79d0608bb7b3e079c3b2ab388dffa36eebe6c6a8416267
-
SHA512
4e72637284b2b4eecb78b3c6b94a27474610532d3002ca7577fce8f551ef5df8696626beeeaa14c6fdce55d4511da183bf47797f9c876a3daaf8c345f6680da8
-
SSDEEP
384:L/Ddxz0CSM0qd+1XwQeg9RWoQPFdvDh8VKxQjHZu//uL5Tli4ngmXBuOkr:jYCSZqdSAQ39IoAFFpxQ5uXuL5NpU
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Indicator Removal: File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-