General
-
Target
15051bf8fa376d275276d45cb0216ce7_JaffaCakes118
-
Size
1.0MB
-
Sample
240627-hfxlrszbql
-
MD5
15051bf8fa376d275276d45cb0216ce7
-
SHA1
01b7c5fadba6c9e63879824608185d649e8e85fb
-
SHA256
bdf33b12a9a6c529151694fb48bb35ca6081e8f3b08665540d9886bf3c6dba3c
-
SHA512
975cb14bd461ea818ef01846f1095adbedd881125089410e9d585c4ca3fbf4117a7bc96e94ef91b0fc2902aaa8af1b157129bd7909bd1161cc31f53aa27385d1
-
SSDEEP
24576:SlqzTQke4fpemfDvM0dyjsOezoC3iaYXINtb6CMnl3a5Oh/:S6Mke4hpDvM0sgnzIx4/fU1aYh/
Static task
static1
Behavioral task
behavioral1
Sample
15051bf8fa376d275276d45cb0216ce7_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
15051bf8fa376d275276d45cb0216ce7_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
15051bf8fa376d275276d45cb0216ce7_JaffaCakes118
-
Size
1.0MB
-
MD5
15051bf8fa376d275276d45cb0216ce7
-
SHA1
01b7c5fadba6c9e63879824608185d649e8e85fb
-
SHA256
bdf33b12a9a6c529151694fb48bb35ca6081e8f3b08665540d9886bf3c6dba3c
-
SHA512
975cb14bd461ea818ef01846f1095adbedd881125089410e9d585c4ca3fbf4117a7bc96e94ef91b0fc2902aaa8af1b157129bd7909bd1161cc31f53aa27385d1
-
SSDEEP
24576:SlqzTQke4fpemfDvM0dyjsOezoC3iaYXINtb6CMnl3a5Oh/:S6Mke4hpDvM0sgnzIx4/fU1aYh/
Score10/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-