General
-
Target
232569d59a9b2e49c99c142f961e0799_JaffaCakes118
-
Size
5.0MB
-
Sample
240508-et2k4acg43
-
MD5
232569d59a9b2e49c99c142f961e0799
-
SHA1
1e6e1300f462451ec0a1dc2f79a9cc5252f95b83
-
SHA256
cc76131a6fbdd233d2cb6dae93b1fd5883b7a78dda5d7ad859ddb33feeeaac7e
-
SHA512
2448514c6ef5f39c3426ec7bb3e1a38b552051c87f9b788b7154ac25b06d1f13407e48ea5cc637fe6b0201422e681f89d4802287112761794fe74a65d140dc4b
-
SSDEEP
49152:JnjQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9PAME:d8qPoBhz1aRxcSUDk36SAEdhvxWa9P5
Static task
static1
Behavioral task
behavioral1
Sample
232569d59a9b2e49c99c142f961e0799_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
232569d59a9b2e49c99c142f961e0799_JaffaCakes118.dll
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
232569d59a9b2e49c99c142f961e0799_JaffaCakes118
-
Size
5.0MB
-
MD5
232569d59a9b2e49c99c142f961e0799
-
SHA1
1e6e1300f462451ec0a1dc2f79a9cc5252f95b83
-
SHA256
cc76131a6fbdd233d2cb6dae93b1fd5883b7a78dda5d7ad859ddb33feeeaac7e
-
SHA512
2448514c6ef5f39c3426ec7bb3e1a38b552051c87f9b788b7154ac25b06d1f13407e48ea5cc637fe6b0201422e681f89d4802287112761794fe74a65d140dc4b
-
SSDEEP
49152:JnjQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9PAME:d8qPoBhz1aRxcSUDk36SAEdhvxWa9P5
Score10/10-
Contacts a large (3154) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-