General
-
Target
18ebccf4fd90235a68b37d676d7ed9c5_JaffaCakes118
-
Size
5.0MB
-
Sample
240505-xremnaae21
-
MD5
18ebccf4fd90235a68b37d676d7ed9c5
-
SHA1
2ce147e191aa1a4b4803a353a2a6d1a956051920
-
SHA256
3fa6793e482dbadb9d0fac3df073069cab4c2357364da257a189b771b10dabfb
-
SHA512
d1cb5bc612572a778cf56d56a078cb9648fbf145c24b302b767d762b21c8e6e1f989f53271ee9e041c57a44aaa6f2b1284017638c2b2192078fdeef85cbdc0d5
-
SSDEEP
98304:+DqPoBhzLxcSUDk36SAEdhvxWa903RA2H:+DqPeLxcxk3ZAEUaERvH
Static task
static1
Behavioral task
behavioral1
Sample
18ebccf4fd90235a68b37d676d7ed9c5_JaffaCakes118.dll
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
18ebccf4fd90235a68b37d676d7ed9c5_JaffaCakes118.dll
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
18ebccf4fd90235a68b37d676d7ed9c5_JaffaCakes118
-
Size
5.0MB
-
MD5
18ebccf4fd90235a68b37d676d7ed9c5
-
SHA1
2ce147e191aa1a4b4803a353a2a6d1a956051920
-
SHA256
3fa6793e482dbadb9d0fac3df073069cab4c2357364da257a189b771b10dabfb
-
SHA512
d1cb5bc612572a778cf56d56a078cb9648fbf145c24b302b767d762b21c8e6e1f989f53271ee9e041c57a44aaa6f2b1284017638c2b2192078fdeef85cbdc0d5
-
SSDEEP
98304:+DqPoBhzLxcSUDk36SAEdhvxWa903RA2H:+DqPeLxcxk3ZAEUaERvH
Score10/10-
Contacts a large (3311) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-