General
-
Target
28173ec09cea522771091902faeabf93_JaffaCakes118
-
Size
196KB
-
Sample
240706-lprnnaxbnc
-
MD5
28173ec09cea522771091902faeabf93
-
SHA1
b81d305f3a415e2fbd628d5e9302837e492794b0
-
SHA256
f0fce6f21a353a5be48143950642d36f3143a320a95750624598783402fee12e
-
SHA512
60a8325bbb76e43e33164d0d28b7d3d2f3233054090320c57f92a7186b94c4ca6e93a477742b12e04ae2c03899835750429ac2a14a15a45936dfe4955ea84bd6
-
SSDEEP
3072:RXTHqD1AKufDbMV+Ub6/7likUEuhbDUrg0KZ:c1Nua6Zi/wgf
Static task
static1
Behavioral task
behavioral1
Sample
28173ec09cea522771091902faeabf93_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
28173ec09cea522771091902faeabf93_JaffaCakes118.exe
Resource
win10v2004-20240704-en
Malware Config
Extracted
pony
http://etsiunjour.fr:81/pony/gate.php
-
payload_url
http://megamodelcampinas.com.br/mYcq49H3/KunKrn.exe
http://antezanaabogados.com/PZmV3Ft1/LbTQW.exe
http://woofandme.com/V9DwYJtb/Gep.exe
Targets
-
-
Target
28173ec09cea522771091902faeabf93_JaffaCakes118
-
Size
196KB
-
MD5
28173ec09cea522771091902faeabf93
-
SHA1
b81d305f3a415e2fbd628d5e9302837e492794b0
-
SHA256
f0fce6f21a353a5be48143950642d36f3143a320a95750624598783402fee12e
-
SHA512
60a8325bbb76e43e33164d0d28b7d3d2f3233054090320c57f92a7186b94c4ca6e93a477742b12e04ae2c03899835750429ac2a14a15a45936dfe4955ea84bd6
-
SSDEEP
3072:RXTHqD1AKufDbMV+Ub6/7likUEuhbDUrg0KZ:c1Nua6Zi/wgf
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-