General
-
Target
288f972bc589a7bc7a9d3021956949d2_JaffaCakes118
-
Size
3.6MB
-
Sample
240509-ghb76sdc6w
-
MD5
288f972bc589a7bc7a9d3021956949d2
-
SHA1
e360c0a8201db8dc8e40615f695d5036d7dc5f69
-
SHA256
a8b78cd3a80ee1cc8480b956e6b8879c499b57f2f1387a84de75c92e7d3314c1
-
SHA512
6dc08590c96adbb397b5a212e5a7fb44a9e44f3f64877c76bbc6f2bb60ffb5939c88f6533ca4c1cc33a3cb30d376656ab3a2d9aedc5c63f65f75989e566cf6c7
-
SSDEEP
49152:2nAQqMSPbcBVQej/1Rx+TSqTdX1HkQo6SAARdhnvxJM0H9:yDqPoBhz1RxcSUDk36SAEdhvxWa9
Static task
static1
Behavioral task
behavioral1
Sample
288f972bc589a7bc7a9d3021956949d2_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
288f972bc589a7bc7a9d3021956949d2_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
288f972bc589a7bc7a9d3021956949d2_JaffaCakes118
-
Size
3.6MB
-
MD5
288f972bc589a7bc7a9d3021956949d2
-
SHA1
e360c0a8201db8dc8e40615f695d5036d7dc5f69
-
SHA256
a8b78cd3a80ee1cc8480b956e6b8879c499b57f2f1387a84de75c92e7d3314c1
-
SHA512
6dc08590c96adbb397b5a212e5a7fb44a9e44f3f64877c76bbc6f2bb60ffb5939c88f6533ca4c1cc33a3cb30d376656ab3a2d9aedc5c63f65f75989e566cf6c7
-
SSDEEP
49152:2nAQqMSPbcBVQej/1Rx+TSqTdX1HkQo6SAARdhnvxJM0H9:yDqPoBhz1RxcSUDk36SAEdhvxWa9
Score10/10-
Contacts a large (3340) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-