General
-
Target
47bb485373165f38a95936ad52f04211_JaffaCakes118
-
Size
5.0MB
-
Sample
240515-yfzzwsgf3v
-
MD5
47bb485373165f38a95936ad52f04211
-
SHA1
29acd16c870de7abbcc504082baf877a23e3bdd0
-
SHA256
4c841250684b6f90e589e7ef19e6267d2d563ffeb4dd2ae9b1d48519100d0432
-
SHA512
c23569bb9105c041918f6fa1cc94da6215275ab1d89a52a62166961e06ea1bd5a46f57a53473a67f9608d1a7764ab0343bd32d31eaf8b2e18daa5818531befec
-
SSDEEP
12288:yvbLgPlu+QhMbaIMu7L5NVErCA4z2g6rTcbckPU82900Ve7zw+K+D:SbLgddQhfdmMSirYbcMNgef0
Static task
static1
Behavioral task
behavioral1
Sample
47bb485373165f38a95936ad52f04211_JaffaCakes118.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
47bb485373165f38a95936ad52f04211_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
47bb485373165f38a95936ad52f04211_JaffaCakes118
-
Size
5.0MB
-
MD5
47bb485373165f38a95936ad52f04211
-
SHA1
29acd16c870de7abbcc504082baf877a23e3bdd0
-
SHA256
4c841250684b6f90e589e7ef19e6267d2d563ffeb4dd2ae9b1d48519100d0432
-
SHA512
c23569bb9105c041918f6fa1cc94da6215275ab1d89a52a62166961e06ea1bd5a46f57a53473a67f9608d1a7764ab0343bd32d31eaf8b2e18daa5818531befec
-
SSDEEP
12288:yvbLgPlu+QhMbaIMu7L5NVErCA4z2g6rTcbckPU82900Ve7zw+K+D:SbLgddQhfdmMSirYbcMNgef0
Score10/10-
Contacts a large (3197) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-