General
-
Target
d0e01318a174865b0093a11b874e1b8a_JaffaCakes118
-
Size
112KB
-
Sample
240907-csqq4a1aje
-
MD5
d0e01318a174865b0093a11b874e1b8a
-
SHA1
b41c7e73e74d104428417b1125befc70f1ca3c16
-
SHA256
7024be354e52685b5b6a2939a755851c97de4a4d663ed187e33d3e2d8031b9dd
-
SHA512
dd2f5da273b6de32c99fb7e2336017b609e3afaccb961754622a09b94a80553475b64504d001d22dcfb6accdea789264371a235d4c7285d32d873c69df284ab9
-
SSDEEP
1536:LPqKgbwDeVyAUHwGvVJrYJeyxWxVhkITI5ywWFfB8lBTxe5P1PZ:9gbwDKyLwGvTrYkg6BJR6ns5PFZ
Malware Config
Targets
-
-
Target
d0e01318a174865b0093a11b874e1b8a_JaffaCakes118
-
Size
112KB
-
MD5
d0e01318a174865b0093a11b874e1b8a
-
SHA1
b41c7e73e74d104428417b1125befc70f1ca3c16
-
SHA256
7024be354e52685b5b6a2939a755851c97de4a4d663ed187e33d3e2d8031b9dd
-
SHA512
dd2f5da273b6de32c99fb7e2336017b609e3afaccb961754622a09b94a80553475b64504d001d22dcfb6accdea789264371a235d4c7285d32d873c69df284ab9
-
SSDEEP
1536:LPqKgbwDeVyAUHwGvVJrYJeyxWxVhkITI5ywWFfB8lBTxe5P1PZ:9gbwDKyLwGvTrYkg6BJR6ns5PFZ
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Suspicious use of SetThreadContext
-