General
-
Target
371d6bbd724de01a9a2360eb231f0381_JaffaCakes118
-
Size
5.0MB
-
Sample
240511-3h1resgh96
-
MD5
371d6bbd724de01a9a2360eb231f0381
-
SHA1
193af11586a776674d202d1964bcc84dd514d967
-
SHA256
3713c9324fe597da1baeb94ed3d29d37654a4f332dd0b90132de7dc9a7340015
-
SHA512
d71a9962053407786920ac8c4830456786fe7eb6c5a8b91470352469042f29c50ef40dd0421140e9013927364aa6e0c7185583379fbcf6f477b2e9819d2b76dc
-
SSDEEP
49152:JnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnv:dDqPoBhz1aRxcSUDk36SAEdhv
Static task
static1
Behavioral task
behavioral1
Sample
371d6bbd724de01a9a2360eb231f0381_JaffaCakes118.dll
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
371d6bbd724de01a9a2360eb231f0381_JaffaCakes118.dll
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
371d6bbd724de01a9a2360eb231f0381_JaffaCakes118
-
Size
5.0MB
-
MD5
371d6bbd724de01a9a2360eb231f0381
-
SHA1
193af11586a776674d202d1964bcc84dd514d967
-
SHA256
3713c9324fe597da1baeb94ed3d29d37654a4f332dd0b90132de7dc9a7340015
-
SHA512
d71a9962053407786920ac8c4830456786fe7eb6c5a8b91470352469042f29c50ef40dd0421140e9013927364aa6e0c7185583379fbcf6f477b2e9819d2b76dc
-
SSDEEP
49152:JnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnv:dDqPoBhz1aRxcSUDk36SAEdhv
Score10/10-
Contacts a large (3272) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-