General
-
Target
22dccb5bba83abd89502fafda108b0ce_JaffaCakes118
-
Size
422KB
-
Sample
240329-qe7pcahh95
-
MD5
22dccb5bba83abd89502fafda108b0ce
-
SHA1
b1398ba3766f4514cc039de8cb5142fe67572c27
-
SHA256
fc79c3c3b0d705e0648d493c8aac851f40fcf8dc2cacdc163f9cc237dc821255
-
SHA512
92bd11b940f02892254227f9c7ed3b241449af6d19e64646121f418a105f7310cf39fada199a92daf06a0f7a184c65d768e13f1fd6f851db85b9acaefd8537fb
-
SSDEEP
6144:xLIiVgoGRuKEpcHCTavdmnulKg+z89Hu2cP0gzUE4rzxD1T3BxiXna:jurfEpciTaVHX+z0HbTgzUdrzXT3Bxs
Static task
static1
Behavioral task
behavioral1
Sample
22dccb5bba83abd89502fafda108b0ce_JaffaCakes118.exe
Resource
win7-20231129-en
Malware Config
Extracted
cryptbot
befhns72.top
moralv07.top
-
payload_url
http://minets10.top/download.php?file=lv.exe
Targets
-
-
Target
22dccb5bba83abd89502fafda108b0ce_JaffaCakes118
-
Size
422KB
-
MD5
22dccb5bba83abd89502fafda108b0ce
-
SHA1
b1398ba3766f4514cc039de8cb5142fe67572c27
-
SHA256
fc79c3c3b0d705e0648d493c8aac851f40fcf8dc2cacdc163f9cc237dc821255
-
SHA512
92bd11b940f02892254227f9c7ed3b241449af6d19e64646121f418a105f7310cf39fada199a92daf06a0f7a184c65d768e13f1fd6f851db85b9acaefd8537fb
-
SSDEEP
6144:xLIiVgoGRuKEpcHCTavdmnulKg+z89Hu2cP0gzUE4rzxD1T3BxiXna:jurfEpciTaVHX+z0HbTgzUdrzXT3Bxs
-
Deletes itself
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-