General
-
Target
e24a9f05a6de6de56699c5816b769778_JaffaCakes118
-
Size
62KB
-
Sample
240915-mrmyxszgrl
-
MD5
e24a9f05a6de6de56699c5816b769778
-
SHA1
49ef5d7447dbfb8a433d810cb5b01a6f13c94c16
-
SHA256
a15e8d04dd3b8cc47cf5150070688ad125cd66fc076bdad3c68b1f2e78d86363
-
SHA512
1c758d0aa1fa671f1d9b6a43fd9079be50d0d09c2cf522800370eace534a984a7e656a7c939880e08d3e5be2f701f92d56eed5d6fe4dc81aea40d24f7fdb5c0e
-
SSDEEP
1536:K8rT+onNbyXs8StJlUUInB8Wra8GpK1SvNfB4:NrionNbgTElE1rN+hlfi
Malware Config
Targets
-
-
Target
e24a9f05a6de6de56699c5816b769778_JaffaCakes118
-
Size
62KB
-
MD5
e24a9f05a6de6de56699c5816b769778
-
SHA1
49ef5d7447dbfb8a433d810cb5b01a6f13c94c16
-
SHA256
a15e8d04dd3b8cc47cf5150070688ad125cd66fc076bdad3c68b1f2e78d86363
-
SHA512
1c758d0aa1fa671f1d9b6a43fd9079be50d0d09c2cf522800370eace534a984a7e656a7c939880e08d3e5be2f701f92d56eed5d6fe4dc81aea40d24f7fdb5c0e
-
SSDEEP
1536:K8rT+onNbyXs8StJlUUInB8Wra8GpK1SvNfB4:NrionNbgTElE1rN+hlfi
Score10/10-
Modifies WinLogon for persistence
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-