Analysis
-
max time kernel
122s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
04-12-2024 13:23
Static task
static1
Behavioral task
behavioral1
Sample
c2b9436b6ccde1f2c990e486b635b2e6_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
c2b9436b6ccde1f2c990e486b635b2e6_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
c2b9436b6ccde1f2c990e486b635b2e6_JaffaCakes118.exe
-
Size
239KB
-
MD5
c2b9436b6ccde1f2c990e486b635b2e6
-
SHA1
ffe576c9de4b0a132af422845908b1ac9ebd1742
-
SHA256
6a14254a0020462bb102f32452807dbdad56d1a9aa829bed894d0d8c9aefafa2
-
SHA512
2e5d1527868323d1b8fca64192df4d94c323a4b0ff130140b95cc81f2924c0d02e07653d60cbb8ee46b8f449d538a8950651f0bc0a81220374c6a1fe78611792
-
SSDEEP
6144:QeccjFeYJ6N/sLsueihb12PYxVj/ClQVSHO1UY:QHcx/J6N8SYnmlQVSHk
Malware Config
Extracted
smokeloader
pub5
Signatures
-
SmokeLoader
Modular backdoor trojan in use since 2014.
-
Smokeloader family