General
-
Target
1c4e740ac96b1274029384dc152101fc_JaffaCakes118
-
Size
179KB
-
Sample
240701-ypdg9azgmr
-
MD5
1c4e740ac96b1274029384dc152101fc
-
SHA1
a03c0b30567e8388c1df43cc46cac9a941a80547
-
SHA256
0e6d900559c5c615a2f38fe823bce10228589513e04c7f20b32a28e15679d6df
-
SHA512
433cd9c98000fbc2e79de9979c94ad0fd295e65ad110caffdf05fd58cba17ce7c0feba6141e233454cd0282ac1e448326eca55190d896e60b20a4dd7f52e60c9
-
SSDEEP
3072:f7UKBs+k+l8IGMqUt03XIC4SHP7pUR5/Jc15DYyF:TUl+k+u4II6HPVcmbDYQ
Static task
static1
Behavioral task
behavioral1
Sample
1c4e740ac96b1274029384dc152101fc_JaffaCakes118.exe
Resource
win7-20240611-en
Malware Config
Extracted
pony
http://108.178.59.26/forum/viewtopic.php
http://206.72.197.13/forum/viewtopic.php
-
payload_url
http://91.184.22.164/apaS9np.exe
http://sousuoku.com/ehRqcK55.exe
http://www.vivaidiportanova.it/pU5.exe
Targets
-
-
Target
1c4e740ac96b1274029384dc152101fc_JaffaCakes118
-
Size
179KB
-
MD5
1c4e740ac96b1274029384dc152101fc
-
SHA1
a03c0b30567e8388c1df43cc46cac9a941a80547
-
SHA256
0e6d900559c5c615a2f38fe823bce10228589513e04c7f20b32a28e15679d6df
-
SHA512
433cd9c98000fbc2e79de9979c94ad0fd295e65ad110caffdf05fd58cba17ce7c0feba6141e233454cd0282ac1e448326eca55190d896e60b20a4dd7f52e60c9
-
SSDEEP
3072:f7UKBs+k+l8IGMqUt03XIC4SHP7pUR5/Jc15DYyF:TUl+k+u4II6HPVcmbDYQ
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-