General
-
Target
48208773cf7a89f248c189ae161b4d93_JaffaCakes118
-
Size
5.0MB
-
Sample
240515-1b91each31
-
MD5
48208773cf7a89f248c189ae161b4d93
-
SHA1
678ce1f655624d98ec507d258edb7e4316102cea
-
SHA256
f725b6f45c23a844e1452ccc391290953b4790555f5891c5e54b1d106751b343
-
SHA512
1d271a6f1383119db647a474a5cf2db9ad2e825eede654a6050f6b4efba8de678eb3e419185b5e9d1b751466761674f1fe4298d6071e9e96124f1adce4f41c82
-
SSDEEP
49152:JnjQqMSPbcBVQej/1INRx+TSqTdX1HkQhk3R8yAH1plAH:d8qPoBhz1aRxcSUDk53R8yAVp2H
Static task
static1
Behavioral task
behavioral1
Sample
48208773cf7a89f248c189ae161b4d93_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
48208773cf7a89f248c189ae161b4d93_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
48208773cf7a89f248c189ae161b4d93_JaffaCakes118
-
Size
5.0MB
-
MD5
48208773cf7a89f248c189ae161b4d93
-
SHA1
678ce1f655624d98ec507d258edb7e4316102cea
-
SHA256
f725b6f45c23a844e1452ccc391290953b4790555f5891c5e54b1d106751b343
-
SHA512
1d271a6f1383119db647a474a5cf2db9ad2e825eede654a6050f6b4efba8de678eb3e419185b5e9d1b751466761674f1fe4298d6071e9e96124f1adce4f41c82
-
SSDEEP
49152:JnjQqMSPbcBVQej/1INRx+TSqTdX1HkQhk3R8yAH1plAH:d8qPoBhz1aRxcSUDk53R8yAVp2H
Score10/10-
Contacts a large (3280) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-