General
-
Target
00d4f636b4a720cc51b7a66c0b5b80e8_JaffaCakes118
-
Size
5.0MB
-
Sample
240426-qbakfacc49
-
MD5
00d4f636b4a720cc51b7a66c0b5b80e8
-
SHA1
64fe97b3a27c33b3ff04a6c441d9883732d88f4b
-
SHA256
5105ce1318a9f83bec81a0efc5844f39927b20552d5e743da8df6b1876ff1ee4
-
SHA512
c799467d15ed53a9a395aad5e1899c37fa98b96703de8d631a141298e5f8c6cc94e887b7af314effc9a0b307c9bdca82aba05c5897be888e4210f36c8f49a6ee
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhvxWa9P5b8yAVp2H:+DqPe1Cxcxk3ZAEUadZ8yc4H
Static task
static1
Behavioral task
behavioral1
Sample
00d4f636b4a720cc51b7a66c0b5b80e8_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
00d4f636b4a720cc51b7a66c0b5b80e8_JaffaCakes118.dll
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
00d4f636b4a720cc51b7a66c0b5b80e8_JaffaCakes118
-
Size
5.0MB
-
MD5
00d4f636b4a720cc51b7a66c0b5b80e8
-
SHA1
64fe97b3a27c33b3ff04a6c441d9883732d88f4b
-
SHA256
5105ce1318a9f83bec81a0efc5844f39927b20552d5e743da8df6b1876ff1ee4
-
SHA512
c799467d15ed53a9a395aad5e1899c37fa98b96703de8d631a141298e5f8c6cc94e887b7af314effc9a0b307c9bdca82aba05c5897be888e4210f36c8f49a6ee
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhvxWa9P5b8yAVp2H:+DqPe1Cxcxk3ZAEUadZ8yc4H
Score10/10-
Contacts a large (3249) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-