General
-
Target
4d32605bc1a5c408f1a34b99fc38a893_JaffaCakes118
-
Size
5.0MB
-
Sample
240516-1srkdsad26
-
MD5
4d32605bc1a5c408f1a34b99fc38a893
-
SHA1
b77132e8981ce9c59cd5271ed230e8ab44ce43cd
-
SHA256
c93d64322829ede29e935e4b620b8c3777f4ea6ac8e72c127c2126b83e66ba2a
-
SHA512
8949c614a1ed3c9f87446e9bd2e073d06caa2b2190718160e13328ff9078a963005bb27ee12b35319584e404648a91de40aa7c260916d0d8ce69a9943a5004cf
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2:+DqPe1Cxcxk3ZAEUadzR8yc4
Static task
static1
Behavioral task
behavioral1
Sample
4d32605bc1a5c408f1a34b99fc38a893_JaffaCakes118.dll
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
4d32605bc1a5c408f1a34b99fc38a893_JaffaCakes118.dll
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
4d32605bc1a5c408f1a34b99fc38a893_JaffaCakes118
-
Size
5.0MB
-
MD5
4d32605bc1a5c408f1a34b99fc38a893
-
SHA1
b77132e8981ce9c59cd5271ed230e8ab44ce43cd
-
SHA256
c93d64322829ede29e935e4b620b8c3777f4ea6ac8e72c127c2126b83e66ba2a
-
SHA512
8949c614a1ed3c9f87446e9bd2e073d06caa2b2190718160e13328ff9078a963005bb27ee12b35319584e404648a91de40aa7c260916d0d8ce69a9943a5004cf
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2:+DqPe1Cxcxk3ZAEUadzR8yc4
Score10/10-
Contacts a large (3330) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-