General
-
Target
01028b2b86548e8c91fc9db5aca4cad2_JaffaCakes118
-
Size
5.0MB
-
Sample
240426-r6vdrsdh35
-
MD5
01028b2b86548e8c91fc9db5aca4cad2
-
SHA1
bb55d2c339fc64ae823e9025bae6579e23fd895a
-
SHA256
9e7ccdb8b108976057d14f9c2074bf8366d9533ebc58c607ff8976693455df65
-
SHA512
77da67ea8c0265af3ff5f3323f0a0fab02feb275e4578f1e09a50f4bdc1623313d3e9850e5933c6e4d0b7adb343b1969a82d16e2d7597f3eb28263a1f4707fea
-
SSDEEP
24576:SbLgddQhfdmMSirYbcMNgef0QeQjG/D8kIqRYoAdNLTkRiwDnz9cEA5yYSZxN0:SnAQqMSPbcBVQej/1INnkRiwt/Zx+
Static task
static1
Behavioral task
behavioral1
Sample
01028b2b86548e8c91fc9db5aca4cad2_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
01028b2b86548e8c91fc9db5aca4cad2_JaffaCakes118.dll
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
01028b2b86548e8c91fc9db5aca4cad2_JaffaCakes118
-
Size
5.0MB
-
MD5
01028b2b86548e8c91fc9db5aca4cad2
-
SHA1
bb55d2c339fc64ae823e9025bae6579e23fd895a
-
SHA256
9e7ccdb8b108976057d14f9c2074bf8366d9533ebc58c607ff8976693455df65
-
SHA512
77da67ea8c0265af3ff5f3323f0a0fab02feb275e4578f1e09a50f4bdc1623313d3e9850e5933c6e4d0b7adb343b1969a82d16e2d7597f3eb28263a1f4707fea
-
SSDEEP
24576:SbLgddQhfdmMSirYbcMNgef0QeQjG/D8kIqRYoAdNLTkRiwDnz9cEA5yYSZxN0:SnAQqMSPbcBVQej/1INnkRiwt/Zx+
Score10/10-
Contacts a large (3298) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-