General
-
Target
0404061bcf7315acef575ac1a1670aa0_JaffaCakes118
-
Size
826KB
-
Sample
241001-crwkyszfna
-
MD5
0404061bcf7315acef575ac1a1670aa0
-
SHA1
866317704645ecc8070d11aa2cfd36c253b8278e
-
SHA256
63813d74ff73cef9e6beb0ea63b01ab21684c71d7bcebf4374bede34b3ac8518
-
SHA512
27074d88e07e4ab0ce3666dda2a3f29f43c1ca524a79899f2b7e64cf18463965faada40f02dec28fc625e042ed3021aa7093f265246d5cf9b5c092133703148f
-
SSDEEP
12288:ftW/9Ra2JQaMGxFXRdcJoobhnzrUx07LDTP2:o1Ra2JQaTx9TMoIhnzJXP2
Malware Config
Targets
-
-
Target
0404061bcf7315acef575ac1a1670aa0_JaffaCakes118
-
Size
826KB
-
MD5
0404061bcf7315acef575ac1a1670aa0
-
SHA1
866317704645ecc8070d11aa2cfd36c253b8278e
-
SHA256
63813d74ff73cef9e6beb0ea63b01ab21684c71d7bcebf4374bede34b3ac8518
-
SHA512
27074d88e07e4ab0ce3666dda2a3f29f43c1ca524a79899f2b7e64cf18463965faada40f02dec28fc625e042ed3021aa7093f265246d5cf9b5c092133703148f
-
SSDEEP
12288:ftW/9Ra2JQaMGxFXRdcJoobhnzrUx07LDTP2:o1Ra2JQaTx9TMoIhnzJXP2
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-