General
-
Target
1b60b154aecd6b63d917dab4ed154850_JaffaCakes118
-
Size
511KB
-
Sample
240701-p5q9lssfnd
-
MD5
1b60b154aecd6b63d917dab4ed154850
-
SHA1
71d318fa123030652a36791da942027e7859c05f
-
SHA256
1c244b40232d1e87125fa5083e79b7560bb35c6f421b1128180f0906ded3770b
-
SHA512
a969b8320ffdaa80be0434bbeda4adc08936b23caca552f9298433fadee412216e3db641b0ae3fbdc32dc5bec51bb63ecdd153a1134cdb45a5d68c46caae5a69
-
SSDEEP
6144:gOy4B95c8NXjVmnqrqvCpJ1DEhoawm2miCTdssvdW4pX9h+OmtbzX4H4W/O7Wfyv:g895TjasjIhoJDmdvdN5YnIH40lfy+2
Static task
static1
Behavioral task
behavioral1
Sample
1b60b154aecd6b63d917dab4ed154850_JaffaCakes118.exe
Resource
win7-20240220-en
Malware Config
Extracted
darkcomet
Guest16
shy1.no-ip.biz:871
DC_MUTEX-CAV8TCH
-
gencode
ymht70aPLkvF
-
install
false
-
offline_keylogger
true
-
password
aze123456
-
persistence
false
Targets
-
-
Target
1b60b154aecd6b63d917dab4ed154850_JaffaCakes118
-
Size
511KB
-
MD5
1b60b154aecd6b63d917dab4ed154850
-
SHA1
71d318fa123030652a36791da942027e7859c05f
-
SHA256
1c244b40232d1e87125fa5083e79b7560bb35c6f421b1128180f0906ded3770b
-
SHA512
a969b8320ffdaa80be0434bbeda4adc08936b23caca552f9298433fadee412216e3db641b0ae3fbdc32dc5bec51bb63ecdd153a1134cdb45a5d68c46caae5a69
-
SSDEEP
6144:gOy4B95c8NXjVmnqrqvCpJ1DEhoawm2miCTdssvdW4pX9h+OmtbzX4H4W/O7Wfyv:g895TjasjIhoJDmdvdN5YnIH40lfy+2
-
Suspicious use of SetThreadContext
-