General
-
Target
36a5935423d8f1a0cbd42e897779c698_JaffaCakes118
-
Size
3.6MB
-
Sample
240511-1dtq7scg88
-
MD5
36a5935423d8f1a0cbd42e897779c698
-
SHA1
bb9232369c08d4707fb3966f6fad6c0dcccea6be
-
SHA256
3ea6a735620fd9848392a22da2ae45cc79ca27f1f9d6ff42430fa85f87bde135
-
SHA512
c2e215c12cc77659e8047021d173d76945e6a82f0504ec7d2dfe0094bfcd3ea531173b13e9ee937d1dceb498f8e3811914c199279e10c14852a5fba0b42e8a02
-
SSDEEP
98304:XDqPoBhz1aRxcSUDk36SAlxWa9P593R8yAVp2HI:XDqPe1Cxcxk3ZAeadzR8yc4HI
Static task
static1
Behavioral task
behavioral1
Sample
36a5935423d8f1a0cbd42e897779c698_JaffaCakes118.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
36a5935423d8f1a0cbd42e897779c698_JaffaCakes118.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
36a5935423d8f1a0cbd42e897779c698_JaffaCakes118
-
Size
3.6MB
-
MD5
36a5935423d8f1a0cbd42e897779c698
-
SHA1
bb9232369c08d4707fb3966f6fad6c0dcccea6be
-
SHA256
3ea6a735620fd9848392a22da2ae45cc79ca27f1f9d6ff42430fa85f87bde135
-
SHA512
c2e215c12cc77659e8047021d173d76945e6a82f0504ec7d2dfe0094bfcd3ea531173b13e9ee937d1dceb498f8e3811914c199279e10c14852a5fba0b42e8a02
-
SSDEEP
98304:XDqPoBhz1aRxcSUDk36SAlxWa9P593R8yAVp2HI:XDqPe1Cxcxk3ZAeadzR8yc4HI
Score10/10-
Contacts a large (3138) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-