General
-
Target
eab1c36b4518d4be5bd701b7092a6d2c_JaffaCakes118
-
Size
341KB
-
Sample
240919-gfh8psterr
-
MD5
eab1c36b4518d4be5bd701b7092a6d2c
-
SHA1
1b7f84f4131fc9ab61984fc6149c5cea54e149e7
-
SHA256
128ad47022ba88c99b47396c9b82b946722de4cfb1b1220f19f4829204d98d29
-
SHA512
b3ad2c5de35d243761993a88271205c1237a780c506b77b1cef6fb5abbc79cafd49ec26542afdc652012d003ea08d8cc772a17ec8d458827315edb320af2c724
-
SSDEEP
6144:ihkrrHIb3RcaZJi/qzcfA6CBDN/7DCM5634Fl/o:AGLIvuiQI6MDCM56ml/o
Malware Config
Targets
-
-
Target
eab1c36b4518d4be5bd701b7092a6d2c_JaffaCakes118
-
Size
341KB
-
MD5
eab1c36b4518d4be5bd701b7092a6d2c
-
SHA1
1b7f84f4131fc9ab61984fc6149c5cea54e149e7
-
SHA256
128ad47022ba88c99b47396c9b82b946722de4cfb1b1220f19f4829204d98d29
-
SHA512
b3ad2c5de35d243761993a88271205c1237a780c506b77b1cef6fb5abbc79cafd49ec26542afdc652012d003ea08d8cc772a17ec8d458827315edb320af2c724
-
SSDEEP
6144:ihkrrHIb3RcaZJi/qzcfA6CBDN/7DCM5634Fl/o:AGLIvuiQI6MDCM56ml/o
Score7/10-
Executes dropped EXE
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-