General
-
Target
20fb99e5ee06c4afe1bd4eec171bace1_JaffaCakes118
-
Size
5.0MB
-
Sample
240507-tbarzsdf3w
-
MD5
20fb99e5ee06c4afe1bd4eec171bace1
-
SHA1
ff53c01bde424fcd95ec55673dc52ae8fd7dbda3
-
SHA256
e39393189e4cba9cf191bbef87586e0069555706a0c7fb895fc5aa96b6cb899b
-
SHA512
3faa34d8474d0ba36aab69bb78b72b357a8f49fdcb1fe682a5cb0ba92aba61a1058b778d07d1858446f5e168c75175e662854a4a37320cd8fb92be5a768331d4
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAA:+DqPoBhz1aRxcSUDk36SA
Static task
static1
Behavioral task
behavioral1
Sample
20fb99e5ee06c4afe1bd4eec171bace1_JaffaCakes118.dll
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
20fb99e5ee06c4afe1bd4eec171bace1_JaffaCakes118.dll
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
20fb99e5ee06c4afe1bd4eec171bace1_JaffaCakes118
-
Size
5.0MB
-
MD5
20fb99e5ee06c4afe1bd4eec171bace1
-
SHA1
ff53c01bde424fcd95ec55673dc52ae8fd7dbda3
-
SHA256
e39393189e4cba9cf191bbef87586e0069555706a0c7fb895fc5aa96b6cb899b
-
SHA512
3faa34d8474d0ba36aab69bb78b72b357a8f49fdcb1fe682a5cb0ba92aba61a1058b778d07d1858446f5e168c75175e662854a4a37320cd8fb92be5a768331d4
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAA:+DqPoBhz1aRxcSUDk36SA
Score10/10-
Contacts a large (3271) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-