General
-
Target
bfff9a190a402284b203566145a67370_JaffaCakes118
-
Size
654KB
-
Sample
240825-fnrz5swbrd
-
MD5
bfff9a190a402284b203566145a67370
-
SHA1
eb19584b9d2fecac49539f13cdefc7eadd96cc54
-
SHA256
b5c185760d8752083c702fddfadccf757c1f628fc6ffa9b2d235e3a26fb1a165
-
SHA512
57d0fb69365aad07c3aedced4d4e4e5317936aad4be796768af2e0d587db74b9c15a27dbd6e5dcb61852b7282e43396fb69ebafbf101b24eacb516509b4cef5a
-
SSDEEP
12288:CjkArEN249AyE/rbaMct4bO2/Vvt0dMPDMHRH0IkEEJBPo7IAyUEXQZu:1FE//Tct4bOsVtyMPDMxKEEJ+7IAlEB
Malware Config
Targets
-
-
Target
bfff9a190a402284b203566145a67370_JaffaCakes118
-
Size
654KB
-
MD5
bfff9a190a402284b203566145a67370
-
SHA1
eb19584b9d2fecac49539f13cdefc7eadd96cc54
-
SHA256
b5c185760d8752083c702fddfadccf757c1f628fc6ffa9b2d235e3a26fb1a165
-
SHA512
57d0fb69365aad07c3aedced4d4e4e5317936aad4be796768af2e0d587db74b9c15a27dbd6e5dcb61852b7282e43396fb69ebafbf101b24eacb516509b4cef5a
-
SSDEEP
12288:CjkArEN249AyE/rbaMct4bO2/Vvt0dMPDMHRH0IkEEJBPo7IAyUEXQZu:1FE//Tct4bOsVtyMPDMxKEEJ+7IAlEB
Score8/10-
Drops file in Drivers directory
-
Drops startup file
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
AutoIT Executable
AutoIT scripts compiled to PE executables.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-