General
-
Target
eab69950eb1ec43f8af9436294c969de_JaffaCakes118
-
Size
1.3MB
-
Sample
240919-gn844athpr
-
MD5
eab69950eb1ec43f8af9436294c969de
-
SHA1
94667696cb6b3e09307707a2559e525f54fc58c6
-
SHA256
e5a45d560a47cbca21ee45998a4945fca310737f17fc5c755e898db463d37f25
-
SHA512
c5b6edb65befebc2a4caf11fadde58f1e2d72e14735ac3039ff9062ac55e576d888188ee3576acf8cc936e67d6438e116ba00be14346813bc0cd9010b0250fe5
-
SSDEEP
24576:16keeZ0ul2SbasyzqB/8eT4wUB+lVSgln6R3nbNAHfHTr/A4X84BtY1Qli7rAIuq:RZdwSOsyzqBL1UMnl6R3+33d07rh
Malware Config
Targets
-
-
Target
eab69950eb1ec43f8af9436294c969de_JaffaCakes118
-
Size
1.3MB
-
MD5
eab69950eb1ec43f8af9436294c969de
-
SHA1
94667696cb6b3e09307707a2559e525f54fc58c6
-
SHA256
e5a45d560a47cbca21ee45998a4945fca310737f17fc5c755e898db463d37f25
-
SHA512
c5b6edb65befebc2a4caf11fadde58f1e2d72e14735ac3039ff9062ac55e576d888188ee3576acf8cc936e67d6438e116ba00be14346813bc0cd9010b0250fe5
-
SSDEEP
24576:16keeZ0ul2SbasyzqB/8eT4wUB+lVSgln6R3nbNAHfHTr/A4X84BtY1Qli7rAIuq:RZdwSOsyzqBL1UMnl6R3+33d07rh
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Checks whether UAC is enabled
-