General
-
Target
0522cdb03aff0504fad3fd3f4997dacb_JaffaCakes118
-
Size
15.4MB
-
Sample
240428-n49h5afe3w
-
MD5
0522cdb03aff0504fad3fd3f4997dacb
-
SHA1
82949dfd97dc43028fca10988cc18ccd48c1237e
-
SHA256
b804e9766e2ebc1e7665bb4b6ff117f6e667340b539e30453c40715b84d9a9c1
-
SHA512
bd3439490d1fe4e94dcc6e1d77378c144f0c28a3d12ba8cab6646f43d20a9107b9434bb4fe96adba0260fd41a0e8defdf44dc1f92fd6bdb5ec6d6e4c77c78e49
-
SSDEEP
98304:XX77GBfWgVh+Cgad1S3imxJWIfzjTpC5V3:vGBfWqjd1nyzPpCL3
Static task
static1
Behavioral task
behavioral1
Sample
0522cdb03aff0504fad3fd3f4997dacb_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
0522cdb03aff0504fad3fd3f4997dacb_JaffaCakes118.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
0522cdb03aff0504fad3fd3f4997dacb_JaffaCakes118
-
Size
15.4MB
-
MD5
0522cdb03aff0504fad3fd3f4997dacb
-
SHA1
82949dfd97dc43028fca10988cc18ccd48c1237e
-
SHA256
b804e9766e2ebc1e7665bb4b6ff117f6e667340b539e30453c40715b84d9a9c1
-
SHA512
bd3439490d1fe4e94dcc6e1d77378c144f0c28a3d12ba8cab6646f43d20a9107b9434bb4fe96adba0260fd41a0e8defdf44dc1f92fd6bdb5ec6d6e4c77c78e49
-
SSDEEP
98304:XX77GBfWgVh+Cgad1S3imxJWIfzjTpC5V3:vGBfWqjd1nyzPpCL3
Score8/10-
Contacts a large (726) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Adds Run key to start application
-
Drops file in System32 directory
-