General
-
Target
0bd3d686c4a3002e9eb140d4751e42bf_JaffaCakes118
-
Size
3.6MB
-
Sample
240501-pyrlssfa9s
-
MD5
0bd3d686c4a3002e9eb140d4751e42bf
-
SHA1
2f818f3b1f0c1aaa9245e5816ced58bd518d30f8
-
SHA256
4d25660b5b5010913c52354a6c24e9cb82da4b8c187d49a62c150bd6623cbdb3
-
SHA512
547bc25dfcc25bfbe8fb95bc362ab47bd8b969334cbd7b5e72998771cea89e2992520424a2e337b4384071dce867966dcec08deee8013cb95011b15ec998146d
-
SSDEEP
98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2M:yDqPe1Cxcxk3ZAEUadzR8yc4M
Static task
static1
Behavioral task
behavioral1
Sample
0bd3d686c4a3002e9eb140d4751e42bf_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
0bd3d686c4a3002e9eb140d4751e42bf_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
0bd3d686c4a3002e9eb140d4751e42bf_JaffaCakes118
-
Size
3.6MB
-
MD5
0bd3d686c4a3002e9eb140d4751e42bf
-
SHA1
2f818f3b1f0c1aaa9245e5816ced58bd518d30f8
-
SHA256
4d25660b5b5010913c52354a6c24e9cb82da4b8c187d49a62c150bd6623cbdb3
-
SHA512
547bc25dfcc25bfbe8fb95bc362ab47bd8b969334cbd7b5e72998771cea89e2992520424a2e337b4384071dce867966dcec08deee8013cb95011b15ec998146d
-
SSDEEP
98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2M:yDqPe1Cxcxk3ZAEUadzR8yc4M
Score10/10-
Contacts a large (3344) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-