General
-
Target
1f5998c74dc95235f09be7d77b7c5daf_JaffaCakes118
-
Size
5.0MB
-
Sample
240507-ed98asgg4x
-
MD5
1f5998c74dc95235f09be7d77b7c5daf
-
SHA1
6669472a7ee7b774d57c3b21aff66df5229e8c4c
-
SHA256
e2794a0c9c32a87e0ad4d6d4859a6b1f44f794b02654aad9eefbd1afaa267bd6
-
SHA512
43e0807f32a81612ff8e4a0129f18ad851c58c3d5367606b705da747ddda15d710b1c8aaa69de3ac995945f4eaa56814ff1ee5c66c167c247ab17adaeb90643e
-
SSDEEP
24576:SbLgddQhfdmMSirYbcMNgef0QeQjG/VkRiwmE7A4kqAH1pNZtA0p+9XEk:SnAQqMSPbcBVQej/VkRiwf8yAH1plAH
Static task
static1
Behavioral task
behavioral1
Sample
1f5998c74dc95235f09be7d77b7c5daf_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
1f5998c74dc95235f09be7d77b7c5daf_JaffaCakes118.dll
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
1f5998c74dc95235f09be7d77b7c5daf_JaffaCakes118
-
Size
5.0MB
-
MD5
1f5998c74dc95235f09be7d77b7c5daf
-
SHA1
6669472a7ee7b774d57c3b21aff66df5229e8c4c
-
SHA256
e2794a0c9c32a87e0ad4d6d4859a6b1f44f794b02654aad9eefbd1afaa267bd6
-
SHA512
43e0807f32a81612ff8e4a0129f18ad851c58c3d5367606b705da747ddda15d710b1c8aaa69de3ac995945f4eaa56814ff1ee5c66c167c247ab17adaeb90643e
-
SSDEEP
24576:SbLgddQhfdmMSirYbcMNgef0QeQjG/VkRiwmE7A4kqAH1pNZtA0p+9XEk:SnAQqMSPbcBVQej/VkRiwf8yAH1plAH
Score10/10-
Contacts a large (3155) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-