General
-
Target
f267d07c82912e0222666aa2cdc4cbee_JaffaCakes118
-
Size
232KB
-
Sample
240922-t6fxgsyhnc
-
MD5
f267d07c82912e0222666aa2cdc4cbee
-
SHA1
630f7d9cbbb0af1a0d90502bc4be4dbc32b458de
-
SHA256
5c7f5813142029aa1a1326ebef5b7664ab93e0c6bb40cbb40bf9146556a783f3
-
SHA512
1ccfb880532191238f8a1da2448b83ba7128868431b65909bbc7ebfc29a87ab6bc1060ac56b736d769edb8d703b655f9d5fb13fd18bbc1257dfaba0a8d8bdc42
-
SSDEEP
3072:8nkoa1KCPowRKbP7L10uxE232hxeF6HGqZ:ekoaVHa9x32hxq8Go
Static task
static1
Behavioral task
behavioral1
Sample
f267d07c82912e0222666aa2cdc4cbee_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
f267d07c82912e0222666aa2cdc4cbee_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Extracted
buer
http://45.12.32.252:8080/
Targets
-
-
Target
f267d07c82912e0222666aa2cdc4cbee_JaffaCakes118
-
Size
232KB
-
MD5
f267d07c82912e0222666aa2cdc4cbee
-
SHA1
630f7d9cbbb0af1a0d90502bc4be4dbc32b458de
-
SHA256
5c7f5813142029aa1a1326ebef5b7664ab93e0c6bb40cbb40bf9146556a783f3
-
SHA512
1ccfb880532191238f8a1da2448b83ba7128868431b65909bbc7ebfc29a87ab6bc1060ac56b736d769edb8d703b655f9d5fb13fd18bbc1257dfaba0a8d8bdc42
-
SSDEEP
3072:8nkoa1KCPowRKbP7L10uxE232hxeF6HGqZ:ekoaVHa9x32hxq8Go
Score10/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-