General
-
Target
121cce1e6b600df33718850b67a157b0_JaffaCakes118
-
Size
3.6MB
-
Sample
240504-lg175acg45
-
MD5
121cce1e6b600df33718850b67a157b0
-
SHA1
7c7802a3b6c8287c0f9c6d781ebbf966f40e71fc
-
SHA256
9412e2db885e27ad8a746a1d78b2584dfdace249736db136f94f1106bb136341
-
SHA512
fa5c3e7fab2e93305cd7a8d9184f09847ddbd11d5fed764e01e27bf37923a2a9ee6ee6f97c001969e0ee770537a7c9bd2c5736942216bfcc255a9a7c65bd157e
-
SSDEEP
98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9P593RKzl6WG4:yDqPe1Cxcxk3ZAEUadzRSXG4
Static task
static1
Behavioral task
behavioral1
Sample
121cce1e6b600df33718850b67a157b0_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
121cce1e6b600df33718850b67a157b0_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
121cce1e6b600df33718850b67a157b0_JaffaCakes118
-
Size
3.6MB
-
MD5
121cce1e6b600df33718850b67a157b0
-
SHA1
7c7802a3b6c8287c0f9c6d781ebbf966f40e71fc
-
SHA256
9412e2db885e27ad8a746a1d78b2584dfdace249736db136f94f1106bb136341
-
SHA512
fa5c3e7fab2e93305cd7a8d9184f09847ddbd11d5fed764e01e27bf37923a2a9ee6ee6f97c001969e0ee770537a7c9bd2c5736942216bfcc255a9a7c65bd157e
-
SSDEEP
98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9P593RKzl6WG4:yDqPe1Cxcxk3ZAEUadzRSXG4
Score10/10-
Contacts a large (3133) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-