General
-
Target
2ecf5172bc5e7637f593dcf9384f398c_JaffaCakes118
-
Size
5.0MB
-
Sample
240510-m8mpgsah2x
-
MD5
2ecf5172bc5e7637f593dcf9384f398c
-
SHA1
bc370c26f5de99195c5aa9d764c4f42994d0895b
-
SHA256
7e4c00260e5ddce714d067a9a77fe362d332c4b37aaeb86af6de4336338140ec
-
SHA512
d9c9c8302de8507943b5cce5268bc039dd2baccf81655cb32249810d921180ff5e68ea98f22f755940fdb0d6ddb61d008601a00c512cd8e1fef946c715fbe4a4
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9:+DqPoBhz1aRxcSUDk36SAEdhvxWa9
Static task
static1
Behavioral task
behavioral1
Sample
2ecf5172bc5e7637f593dcf9384f398c_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2ecf5172bc5e7637f593dcf9384f398c_JaffaCakes118.dll
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2ecf5172bc5e7637f593dcf9384f398c_JaffaCakes118
-
Size
5.0MB
-
MD5
2ecf5172bc5e7637f593dcf9384f398c
-
SHA1
bc370c26f5de99195c5aa9d764c4f42994d0895b
-
SHA256
7e4c00260e5ddce714d067a9a77fe362d332c4b37aaeb86af6de4336338140ec
-
SHA512
d9c9c8302de8507943b5cce5268bc039dd2baccf81655cb32249810d921180ff5e68ea98f22f755940fdb0d6ddb61d008601a00c512cd8e1fef946c715fbe4a4
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9:+DqPoBhz1aRxcSUDk36SAEdhvxWa9
Score10/10-
Contacts a large (3196) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-