General
-
Target
e37bcca8a3291e0f912ce9a448ec1299_JaffaCakes118
-
Size
873KB
-
Sample
241211-2bslsszrex
-
MD5
e37bcca8a3291e0f912ce9a448ec1299
-
SHA1
619d2145845c5197b26c2667e06ebd813517cb1a
-
SHA256
12ebe257cefabb8061673cbf57f05ea2c1cd0c58646317d7677b0edbbebbaba3
-
SHA512
16a032681f145a7d8a68cb40be19ff267694f2f16cc37b87a689db03f15de1987fda00a36537c33a2b960865efdee9581c9bf16777b29630d075c6e24bb56c63
-
SSDEEP
12288:yoxejOONAM7GUC1Jr+4o628gx2Jw+tP3Jzm8JOCHXC3X+pd167QhEQO:hxY3NtGUmJr+4Obxd+tPZSZiiE6EhE
Malware Config
Targets
-
-
Target
e37bcca8a3291e0f912ce9a448ec1299_JaffaCakes118
-
Size
873KB
-
MD5
e37bcca8a3291e0f912ce9a448ec1299
-
SHA1
619d2145845c5197b26c2667e06ebd813517cb1a
-
SHA256
12ebe257cefabb8061673cbf57f05ea2c1cd0c58646317d7677b0edbbebbaba3
-
SHA512
16a032681f145a7d8a68cb40be19ff267694f2f16cc37b87a689db03f15de1987fda00a36537c33a2b960865efdee9581c9bf16777b29630d075c6e24bb56c63
-
SSDEEP
12288:yoxejOONAM7GUC1Jr+4o628gx2Jw+tP3Jzm8JOCHXC3X+pd167QhEQO:hxY3NtGUmJr+4Obxd+tPZSZiiE6EhE
Score10/10-
FakeAV, RogueAntivirus
FakeAV or Rogue AntiVirus is a class of malware that displays false alert messages.
-
Fakeav family
-
FakeAV payload
-
Adds Run key to start application
-
Drops file in System32 directory
-