General
-
Target
17170c1f1663bdacaca24eaed2281aa9_JaffaCakes118
-
Size
5.0MB
-
Sample
240505-lq5xnshf55
-
MD5
17170c1f1663bdacaca24eaed2281aa9
-
SHA1
f1ed4fc5b1510cd1316b70e4983c206ac8880491
-
SHA256
e83bd29e930711a59ecc689134009dca11e954f4032b0e873af291d75b4bab9b
-
SHA512
abbe062a8de67f75ae2bbcb7476ccd7e6a1e55479b88dc6ad08f0f427eebe6481546c5d3d43784d94b1f68ce125f50b406d8f314e2850a6e8265395d659fd111
-
SSDEEP
98304:TDqPoBhQRxcSUDk36SAEdhvxWa9P593R8yAVp2H:TDqPZxcxk3ZAEUadzR8yc4H
Static task
static1
Behavioral task
behavioral1
Sample
17170c1f1663bdacaca24eaed2281aa9_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
17170c1f1663bdacaca24eaed2281aa9_JaffaCakes118.dll
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
17170c1f1663bdacaca24eaed2281aa9_JaffaCakes118
-
Size
5.0MB
-
MD5
17170c1f1663bdacaca24eaed2281aa9
-
SHA1
f1ed4fc5b1510cd1316b70e4983c206ac8880491
-
SHA256
e83bd29e930711a59ecc689134009dca11e954f4032b0e873af291d75b4bab9b
-
SHA512
abbe062a8de67f75ae2bbcb7476ccd7e6a1e55479b88dc6ad08f0f427eebe6481546c5d3d43784d94b1f68ce125f50b406d8f314e2850a6e8265395d659fd111
-
SSDEEP
98304:TDqPoBhQRxcSUDk36SAEdhvxWa9P593R8yAVp2H:TDqPZxcxk3ZAEUadzR8yc4H
Score10/10-
Contacts a large (3163) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-