General
-
Target
178241e5929ea913eb45244459adc058_JaffaCakes118
-
Size
3.6MB
-
Sample
240505-ntsgvsgh6y
-
MD5
178241e5929ea913eb45244459adc058
-
SHA1
0c3813d8bb094e7d06b72aaac3d08dfc7235ecd6
-
SHA256
842ee68d59d874278e42387c007672eaf79410885795ec218ee93420bf814037
-
SHA512
30ae4dca49282f56a98131e1291128ec0d164a543a6ce64bc0707494837e76241efd50be750ce34dd942a417d83feb42d0d5e1066fb6c00ace060a962b91505f
-
SSDEEP
49152:XnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9:XDqPoBhz1aRxcSUDk36SAEdhvxWa9
Static task
static1
Behavioral task
behavioral1
Sample
178241e5929ea913eb45244459adc058_JaffaCakes118.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
178241e5929ea913eb45244459adc058_JaffaCakes118.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
178241e5929ea913eb45244459adc058_JaffaCakes118
-
Size
3.6MB
-
MD5
178241e5929ea913eb45244459adc058
-
SHA1
0c3813d8bb094e7d06b72aaac3d08dfc7235ecd6
-
SHA256
842ee68d59d874278e42387c007672eaf79410885795ec218ee93420bf814037
-
SHA512
30ae4dca49282f56a98131e1291128ec0d164a543a6ce64bc0707494837e76241efd50be750ce34dd942a417d83feb42d0d5e1066fb6c00ace060a962b91505f
-
SSDEEP
49152:XnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9:XDqPoBhz1aRxcSUDk36SAEdhvxWa9
Score10/10-
Contacts a large (3357) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-