General
-
Target
36b046ce73c61f80ad02c9b984bcf892_JaffaCakes118
-
Size
5.0MB
-
Sample
240511-1ktd1sae3t
-
MD5
36b046ce73c61f80ad02c9b984bcf892
-
SHA1
c78569432c1c25564e221ec13663b65ad88e2ec9
-
SHA256
7f4f9e802b445f2fb2c3aebdb8641c993ab5614c2ed3db439dcf5c0593614552
-
SHA512
6f0f62a145f7045581e2a86bed28c4d2e0ca898cda91cab7af025d09cd420bcec363c2a659d4e05d3450bd03b412e3fe73b01aa3248e938be5340c375eaeae44
-
SSDEEP
98304:+DqPoBLaRvk36SAEdhvxWa9P593R8yAVp2H:+DqPyCvk3ZAEUadzR8yc4H
Static task
static1
Behavioral task
behavioral1
Sample
36b046ce73c61f80ad02c9b984bcf892_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
36b046ce73c61f80ad02c9b984bcf892_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
36b046ce73c61f80ad02c9b984bcf892_JaffaCakes118
-
Size
5.0MB
-
MD5
36b046ce73c61f80ad02c9b984bcf892
-
SHA1
c78569432c1c25564e221ec13663b65ad88e2ec9
-
SHA256
7f4f9e802b445f2fb2c3aebdb8641c993ab5614c2ed3db439dcf5c0593614552
-
SHA512
6f0f62a145f7045581e2a86bed28c4d2e0ca898cda91cab7af025d09cd420bcec363c2a659d4e05d3450bd03b412e3fe73b01aa3248e938be5340c375eaeae44
-
SSDEEP
98304:+DqPoBLaRvk36SAEdhvxWa9P593R8yAVp2H:+DqPyCvk3ZAEUadzR8yc4H
Score10/10-
Contacts a large (3351) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-