General
-
Target
0c166c3b9e6f879ab7f33115d5a252a1_JaffaCakes118
-
Size
5.0MB
-
Sample
240501-r84efsbe74
-
MD5
0c166c3b9e6f879ab7f33115d5a252a1
-
SHA1
fba4b04f54ca357eb1dc3733a95fb6fe5a9c514e
-
SHA256
92d633e2d8c94ffebb60507abc1e7cb893c4131661e1b41fa7032a6dda6b76aa
-
SHA512
ad5bfaec08933783500af6867110ea0329071da68012f33fa31feecea72c4a19e3c027d9065f18c2a4e35fd32787172bae57d9b5b94d1f45ad4022f9e439b9c7
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9:+DqPoBhz1aRxcSUDk36SAEdhvxWa9
Static task
static1
Behavioral task
behavioral1
Sample
0c166c3b9e6f879ab7f33115d5a252a1_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
0c166c3b9e6f879ab7f33115d5a252a1_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
0c166c3b9e6f879ab7f33115d5a252a1_JaffaCakes118
-
Size
5.0MB
-
MD5
0c166c3b9e6f879ab7f33115d5a252a1
-
SHA1
fba4b04f54ca357eb1dc3733a95fb6fe5a9c514e
-
SHA256
92d633e2d8c94ffebb60507abc1e7cb893c4131661e1b41fa7032a6dda6b76aa
-
SHA512
ad5bfaec08933783500af6867110ea0329071da68012f33fa31feecea72c4a19e3c027d9065f18c2a4e35fd32787172bae57d9b5b94d1f45ad4022f9e439b9c7
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9:+DqPoBhz1aRxcSUDk36SAEdhvxWa9
Score10/10-
Contacts a large (3332) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-