General
-
Target
ef3ade0a8eeb3f250bad2ad606e88076_JaffaCakes118
-
Size
7.1MB
-
Sample
240921-g7t5aayfld
-
MD5
ef3ade0a8eeb3f250bad2ad606e88076
-
SHA1
14110ac54af6bf931e8f0e52ff4fa2c31ef05f19
-
SHA256
b3f3a1ce65739728d4ade227996d7b649fb15952a33a2b2fd79184ab03804cff
-
SHA512
11ea522a45371841f641ebcfc30cc431fe9bcea4f7a87521a20ded726b9e58720caf3d8dc4cae2169b78748b23232c936584ffc46dcb0afbb2f84e532feea4ae
-
SSDEEP
196608:Me6P9aFJFoPveiLSEVXSa+V6WlTUXHjWo:Me6PsFJF07LSE19+V65XDWo
Malware Config
Targets
-
-
Target
ef3ade0a8eeb3f250bad2ad606e88076_JaffaCakes118
-
Size
7.1MB
-
MD5
ef3ade0a8eeb3f250bad2ad606e88076
-
SHA1
14110ac54af6bf931e8f0e52ff4fa2c31ef05f19
-
SHA256
b3f3a1ce65739728d4ade227996d7b649fb15952a33a2b2fd79184ab03804cff
-
SHA512
11ea522a45371841f641ebcfc30cc431fe9bcea4f7a87521a20ded726b9e58720caf3d8dc4cae2169b78748b23232c936584ffc46dcb0afbb2f84e532feea4ae
-
SSDEEP
196608:Me6P9aFJFoPveiLSEVXSa+V6WlTUXHjWo:Me6PsFJF07LSE19+V65XDWo
Score7/10-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-