General
-
Target
a79c261f6fae161ede7489db34ca3813_JaffaCakes118
-
Size
513KB
-
Sample
241127-nhyjqs1pds
-
MD5
a79c261f6fae161ede7489db34ca3813
-
SHA1
c2d6bb13082a20c0fe6a97d49a01d5f39355e952
-
SHA256
5895164454aba620b70384013953a9e1e8e0b90166bd5fb849275e42071f0025
-
SHA512
6097dd911f5ca54e7df4281bae393b0a91abf601a89af33b726e177855c7060045db843763b9dff147b589cbf67a3daddf8b584a9f7adb340da377ce089c80a7
-
SSDEEP
12288:BwtKX9ioiqHf5svc1pG0GniZnI3dS0hTmc2IgsHMRmoemwy:+otioJnwxnynI3dWc2IgMTVmH
Static task
static1
Behavioral task
behavioral1
Sample
a79c261f6fae161ede7489db34ca3813_JaffaCakes118.exe
Resource
win7-20241010-en
Malware Config
Targets
-
-
Target
a79c261f6fae161ede7489db34ca3813_JaffaCakes118
-
Size
513KB
-
MD5
a79c261f6fae161ede7489db34ca3813
-
SHA1
c2d6bb13082a20c0fe6a97d49a01d5f39355e952
-
SHA256
5895164454aba620b70384013953a9e1e8e0b90166bd5fb849275e42071f0025
-
SHA512
6097dd911f5ca54e7df4281bae393b0a91abf601a89af33b726e177855c7060045db843763b9dff147b589cbf67a3daddf8b584a9f7adb340da377ce089c80a7
-
SSDEEP
12288:BwtKX9ioiqHf5svc1pG0GniZnI3dS0hTmc2IgsHMRmoemwy:+otioJnwxnynI3dWc2IgMTVmH
-
Darkvnc family
-
DarkVNC payload
-
Suspicious use of SetThreadContext
-