General
-
Target
1b212040f074d2cb1427f81f59075ce1_JaffaCakes118
-
Size
5.4MB
-
Sample
240701-nmzycsygqf
-
MD5
1b212040f074d2cb1427f81f59075ce1
-
SHA1
f1b796868e6c02dd5fc4f31572abd67c1afb9c76
-
SHA256
909a3dfca4c1a9f392a27d76d9e84c71b04994f271aef608344d0211823b60d7
-
SHA512
0faa3782c2af58cd381cc1e7ff281dba6cffb58e36f75197d41fc442d30ad77c7605f3ea8d92d20bda0249ed63756798ea009ef331e00ad7f5d84f9087b49619
-
SSDEEP
98304:DXEs8Ca0XPke8RcX+dWHW5+r+JuHac1DL5dBMScy8MZLTzgX:gExsqlZu3sddFcy82zgX
Behavioral task
behavioral1
Sample
1b212040f074d2cb1427f81f59075ce1_JaffaCakes118.dll
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
1b212040f074d2cb1427f81f59075ce1_JaffaCakes118.dll
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
1b212040f074d2cb1427f81f59075ce1_JaffaCakes118
-
Size
5.4MB
-
MD5
1b212040f074d2cb1427f81f59075ce1
-
SHA1
f1b796868e6c02dd5fc4f31572abd67c1afb9c76
-
SHA256
909a3dfca4c1a9f392a27d76d9e84c71b04994f271aef608344d0211823b60d7
-
SHA512
0faa3782c2af58cd381cc1e7ff281dba6cffb58e36f75197d41fc442d30ad77c7605f3ea8d92d20bda0249ed63756798ea009ef331e00ad7f5d84f9087b49619
-
SSDEEP
98304:DXEs8Ca0XPke8RcX+dWHW5+r+JuHac1DL5dBMScy8MZLTzgX:gExsqlZu3sddFcy82zgX
Score8/10-
Blocklisted process makes network request
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-