General
-
Target
00eb5aa2afe3ff2e28c6976935ac5ab2_JaffaCakes118
-
Size
5.0MB
-
Sample
240426-q89qssda87
-
MD5
00eb5aa2afe3ff2e28c6976935ac5ab2
-
SHA1
0d3affb9199beda0f923e1f03834d6d617812dde
-
SHA256
e03394495584b447a14f68e66ca9b4dc1a6efe5e2f71db9079ccf3504e5f4946
-
SHA512
0f9f5f28f762194f0f4d8ba60702ae4a38cf062ae226cfae330080f9ddcabb52bac1e96bf2b2e2e696e75e713c3cd5e913c84daa11af3319d45da8062a3fec03
-
SSDEEP
49152:znAQqMSPbcBVQej/1INRx+TSqTdX1HkQD9S:TDqPoBhz1aRxcSUDk+w
Static task
static1
Behavioral task
behavioral1
Sample
00eb5aa2afe3ff2e28c6976935ac5ab2_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
00eb5aa2afe3ff2e28c6976935ac5ab2_JaffaCakes118.dll
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
00eb5aa2afe3ff2e28c6976935ac5ab2_JaffaCakes118
-
Size
5.0MB
-
MD5
00eb5aa2afe3ff2e28c6976935ac5ab2
-
SHA1
0d3affb9199beda0f923e1f03834d6d617812dde
-
SHA256
e03394495584b447a14f68e66ca9b4dc1a6efe5e2f71db9079ccf3504e5f4946
-
SHA512
0f9f5f28f762194f0f4d8ba60702ae4a38cf062ae226cfae330080f9ddcabb52bac1e96bf2b2e2e696e75e713c3cd5e913c84daa11af3319d45da8062a3fec03
-
SSDEEP
49152:znAQqMSPbcBVQej/1INRx+TSqTdX1HkQD9S:TDqPoBhz1aRxcSUDk+w
Score10/10-
Contacts a large (3338) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-