General
-
Target
ac646e6f709117125a352bf438441184_JaffaCakes118
-
Size
73KB
-
Sample
240615-bsgyhstgpa
-
MD5
ac646e6f709117125a352bf438441184
-
SHA1
733eaa47ad097101a5387990a9cb3a118964fbb9
-
SHA256
49216207efda974827055a1fabc9157a7e431d83dd9bcadd7c8cbff3fd4b6ba3
-
SHA512
3f1c0a4e5d4914d84e35033d5f5153b2507d91c4b108214f5f499518f7444ff2093c44fcc13bf20c6c973c7540fd1a8062571ed632de1ee969e0a480d40980c7
-
SSDEEP
1536:555u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:RMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
ac646e6f709117125a352bf438441184_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
ac646e6f709117125a352bf438441184_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
ac646e6f709117125a352bf438441184_JaffaCakes118
-
Size
73KB
-
MD5
ac646e6f709117125a352bf438441184
-
SHA1
733eaa47ad097101a5387990a9cb3a118964fbb9
-
SHA256
49216207efda974827055a1fabc9157a7e431d83dd9bcadd7c8cbff3fd4b6ba3
-
SHA512
3f1c0a4e5d4914d84e35033d5f5153b2507d91c4b108214f5f499518f7444ff2093c44fcc13bf20c6c973c7540fd1a8062571ed632de1ee969e0a480d40980c7
-
SSDEEP
1536:555u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:RMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-