29ff448edf644192eeb8e56a68b463cd11eadb3dadff46a080a71229c8fb8322 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

cdd076f050...18.exe

windows7-x64

9

cdd076f050...18.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

cdd076f050d316361e8cb9614f9f588a_JaffaCakes118.exe
Size

101KB
Sample

240504-yrllmsce69
MD5

cdd076f050d316361e8cb9614f9f588a
SHA1

23f2af4857fb676cf0a459805992c69a2de75769
SHA256

29ff448edf644192eeb8e56a68b463cd11eadb3dadff46a080a71229c8fb8322
SHA512

73271ada0199318bd3b6ef8d5166fd79bfc79e9f03c3e972e9e1db865f9d055ba713a5d7f607e8a04888f486b7f1640efdd214b1def9c145c62d80c449a34379
SSDEEP

3072:6rWpcOPxPke+e3fFpsJOfFpsJbgEJRTug:tFPxPke+eI/ug

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

cdd076f050d316361e8cb9614f9f588a_JaffaCakes118.exe

Resource

win7-20240215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

cdd076f050d316361e8cb9614f9f588a_JaffaCakes118.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  cdd076f050d316361e8cb9614f9f588a_JaffaCakes118.exe
- Size
  
  101KB
- MD5
  
  cdd076f050d316361e8cb9614f9f588a
- SHA1
  
  23f2af4857fb676cf0a459805992c69a2de75769
- SHA256
  
  29ff448edf644192eeb8e56a68b463cd11eadb3dadff46a080a71229c8fb8322
- SHA512
  
  73271ada0199318bd3b6ef8d5166fd79bfc79e9f03c3e972e9e1db865f9d055ba713a5d7f607e8a04888f486b7f1640efdd214b1def9c145c62d80c449a34379
- SSDEEP
  
  3072:6rWpcOPxPke+e3fFpsJOfFpsJbgEJRTug:tFPxPke+eI/ug
Score

9^/10

ransomware
- Renames multiple (3450) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy