General
-
Target
394fbacb4bbd7095170bfb352485db4e_JaffaCakes118
-
Size
3.6MB
-
Sample
240512-kzr7hacc58
-
MD5
394fbacb4bbd7095170bfb352485db4e
-
SHA1
0c33a6f11b5b3a98c5c4f42a0e95829b874f3d7d
-
SHA256
5969bc8e4f0f1fd36e5289bc05d2b34ffbd44b92acd32653387501222d45261e
-
SHA512
c550918e0aab6b657d0821223fa64d21a6fa2e1731ac63af89093914782d42263a7c56a2cfcf1100937471d1aab2d34f312b8e3f899c05c4483d0f6b51603502
-
SSDEEP
98304:Z8qPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2uI:Z8qPe1Cxcxk3ZAEUadzR8yc4uI
Static task
static1
Behavioral task
behavioral1
Sample
394fbacb4bbd7095170bfb352485db4e_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
394fbacb4bbd7095170bfb352485db4e_JaffaCakes118.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
394fbacb4bbd7095170bfb352485db4e_JaffaCakes118
-
Size
3.6MB
-
MD5
394fbacb4bbd7095170bfb352485db4e
-
SHA1
0c33a6f11b5b3a98c5c4f42a0e95829b874f3d7d
-
SHA256
5969bc8e4f0f1fd36e5289bc05d2b34ffbd44b92acd32653387501222d45261e
-
SHA512
c550918e0aab6b657d0821223fa64d21a6fa2e1731ac63af89093914782d42263a7c56a2cfcf1100937471d1aab2d34f312b8e3f899c05c4483d0f6b51603502
-
SSDEEP
98304:Z8qPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2uI:Z8qPe1Cxcxk3ZAEUadzR8yc4uI
Score10/10-
Contacts a large (3365) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-