General
-
Target
8462c0929b9e8e831fa28392a44dfabc_JaffaCakes118
-
Size
1.0MB
-
Sample
241101-mxvkyszgpj
-
MD5
8462c0929b9e8e831fa28392a44dfabc
-
SHA1
27cc3896304fadd5a36430779c6e3bb6a89c8a20
-
SHA256
0e27d9d554741541379396fbed7ea31ef797e5f39e9edb7ef2cbc23afe032a5d
-
SHA512
71a332facbab6aaa81b616b9f9eb7fb8221d3a901d75ca12a8862603fb3a39c67d673ccd50d3202d831a38253152972c85acc894460d6b6c8be9303bcb9dc3c4
-
SSDEEP
12288:rwd+VFF2uWdMP8CjfFk2dx4SQk+3n/zM5VG7GTNxX5yX8Z8ZO6:rS+VFcd4DFkWHQlGNxX5yXa
Static task
static1
Behavioral task
behavioral1
Sample
8462c0929b9e8e831fa28392a44dfabc_JaffaCakes118.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
8462c0929b9e8e831fa28392a44dfabc_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
8462c0929b9e8e831fa28392a44dfabc_JaffaCakes118
-
Size
1.0MB
-
MD5
8462c0929b9e8e831fa28392a44dfabc
-
SHA1
27cc3896304fadd5a36430779c6e3bb6a89c8a20
-
SHA256
0e27d9d554741541379396fbed7ea31ef797e5f39e9edb7ef2cbc23afe032a5d
-
SHA512
71a332facbab6aaa81b616b9f9eb7fb8221d3a901d75ca12a8862603fb3a39c67d673ccd50d3202d831a38253152972c85acc894460d6b6c8be9303bcb9dc3c4
-
SSDEEP
12288:rwd+VFF2uWdMP8CjfFk2dx4SQk+3n/zM5VG7GTNxX5yX8Z8ZO6:rS+VFcd4DFkWHQlGNxX5yXa
Score7/10-
Unsecured Credentials: Credentials In Files
Steal credentials from unsecured files.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
4Credentials In Files
4