General
-
Target
0ee1a729d1a6c71cfadba80a7a166f93_JaffaCakes118
-
Size
405KB
-
Sample
240328-ytntsafc7x
-
MD5
0ee1a729d1a6c71cfadba80a7a166f93
-
SHA1
1379d3377cfe5617234b225243b8c57db0e4e1c8
-
SHA256
09185e4fe865342754563f1c4198c13fc8f0bc6854021bb3b75bbf48021e0a34
-
SHA512
f834684cf9d327b826db69695a747b4aed7afe87793d6a2d5f6c8337c73158c103ddb3d703fb4b05b3a59021fa3af100252c76acd5299086d65000b3c88f1fb2
-
SSDEEP
6144:JIrSoNdo0gKprnb8xSxcDOW1Ga5YQXGzteOiw2wszZDPJReqDd/SYQK:uN0dQFxUOMG0XGztebw2wsdDuqDd/S
Static task
static1
Behavioral task
behavioral1
Sample
0ee1a729d1a6c71cfadba80a7a166f93_JaffaCakes118.exe
Resource
win7-20231129-en
Malware Config
Extracted
cryptbot
befhns72.top
moralv07.top
-
payload_url
http://minets10.top/download.php?file=lv.exe
Targets
-
-
Target
0ee1a729d1a6c71cfadba80a7a166f93_JaffaCakes118
-
Size
405KB
-
MD5
0ee1a729d1a6c71cfadba80a7a166f93
-
SHA1
1379d3377cfe5617234b225243b8c57db0e4e1c8
-
SHA256
09185e4fe865342754563f1c4198c13fc8f0bc6854021bb3b75bbf48021e0a34
-
SHA512
f834684cf9d327b826db69695a747b4aed7afe87793d6a2d5f6c8337c73158c103ddb3d703fb4b05b3a59021fa3af100252c76acd5299086d65000b3c88f1fb2
-
SSDEEP
6144:JIrSoNdo0gKprnb8xSxcDOW1Ga5YQXGzteOiw2wszZDPJReqDd/SYQK:uN0dQFxUOMG0XGztebw2wsdDuqDd/S
-
Deletes itself
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-