General
-
Target
b4f05471a141a36da0dc56060ba269c6_JaffaCakes118
-
Size
322KB
-
Sample
241130-fwwcjatqe1
-
MD5
b4f05471a141a36da0dc56060ba269c6
-
SHA1
b15fde540133c1808a9815346ae48b53052ed3a7
-
SHA256
b3255977f10fd871e84c39de1600b5acc54b862bce681b959fd210ffcd7f7f9e
-
SHA512
4266b6713e0c896beb8a89d0dea5b3117506e7ae49774e3b7fcad563c11991d10f8a15c817327909a3cd9deefccee7f4bd4b72af8655161c33d9f23c9d584513
-
SSDEEP
6144:Molib4IPXJX5/9RpFWF4jotuWcB+RgH6kBGD+Ye3pU+AFI+DfI/g:WPXpldFWF48sWcB+5QPiI0f
Static task
static1
Behavioral task
behavioral1
Sample
b4f05471a141a36da0dc56060ba269c6_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
b4f05471a141a36da0dc56060ba269c6_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
b4f05471a141a36da0dc56060ba269c6_JaffaCakes118
-
Size
322KB
-
MD5
b4f05471a141a36da0dc56060ba269c6
-
SHA1
b15fde540133c1808a9815346ae48b53052ed3a7
-
SHA256
b3255977f10fd871e84c39de1600b5acc54b862bce681b959fd210ffcd7f7f9e
-
SHA512
4266b6713e0c896beb8a89d0dea5b3117506e7ae49774e3b7fcad563c11991d10f8a15c817327909a3cd9deefccee7f4bd4b72af8655161c33d9f23c9d584513
-
SSDEEP
6144:Molib4IPXJX5/9RpFWF4jotuWcB+RgH6kBGD+Ye3pU+AFI+DfI/g:WPXpldFWF48sWcB+5QPiI0f
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-