General
-
Target
d23f7b5ce6b84e9e45a724902fa8c4f9_JaffaCakes118
-
Size
625KB
-
Sample
240907-svkwmazgkr
-
MD5
d23f7b5ce6b84e9e45a724902fa8c4f9
-
SHA1
3c76d90dc0669f9d11781736dee2a024da41c182
-
SHA256
9f52e1dc3203ba615374f290c520140f2bfd39a22211476e59f0382eb4fad14e
-
SHA512
4537aaa38ad087d6dcfcb739db6274f92b10861f02589cd78140ef49a0b8e86850e8292a596be9ee7aeab3845ac5f6baf586f85b398501a56dfff89a8b7a1af3
-
SSDEEP
12288:LVt+w8wyv/N66WoJMFVX6mAa2ogpQg0prnAbiKusJ2:xt+w5y9DJUR6mAajgpQvpr0fJ
Static task
static1
Malware Config
Targets
-
-
Target
d23f7b5ce6b84e9e45a724902fa8c4f9_JaffaCakes118
-
Size
625KB
-
MD5
d23f7b5ce6b84e9e45a724902fa8c4f9
-
SHA1
3c76d90dc0669f9d11781736dee2a024da41c182
-
SHA256
9f52e1dc3203ba615374f290c520140f2bfd39a22211476e59f0382eb4fad14e
-
SHA512
4537aaa38ad087d6dcfcb739db6274f92b10861f02589cd78140ef49a0b8e86850e8292a596be9ee7aeab3845ac5f6baf586f85b398501a56dfff89a8b7a1af3
-
SSDEEP
12288:LVt+w8wyv/N66WoJMFVX6mAa2ogpQg0prnAbiKusJ2:xt+w5y9DJUR6mAajgpQvpr0fJ
-
Expiro payload
-
Disables taskbar notifications via registry modification
-
Executes dropped EXE
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-