General
-
Target
4d0eeb02dd0ca1c97f389b9751151bb1_JaffaCakes118
-
Size
5.0MB
-
Sample
240516-z5ldgagg79
-
MD5
4d0eeb02dd0ca1c97f389b9751151bb1
-
SHA1
65e9bb056cc6d5418dbf99526c51303a655c4221
-
SHA256
99943e6c8ba298f43cd8f225f4df4cf625e622ba789e2b60eb3e41ebda62da41
-
SHA512
0a21b89937e00526434b9984896020001b4a107d09abbf64e6d051dd1d7290ec558f5e9c43b27afcabf5faca6324e5ff313aa897ead790d755ce5dd5e8d650a1
-
SSDEEP
98304:+DqPoBhc1aRxcSUDk36SAEdhvxWa9P5uR8yAVp2H:+DqP11Cxcxk3ZAEUadgR8yc4H
Static task
static1
Behavioral task
behavioral1
Sample
4d0eeb02dd0ca1c97f389b9751151bb1_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
4d0eeb02dd0ca1c97f389b9751151bb1_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
4d0eeb02dd0ca1c97f389b9751151bb1_JaffaCakes118
-
Size
5.0MB
-
MD5
4d0eeb02dd0ca1c97f389b9751151bb1
-
SHA1
65e9bb056cc6d5418dbf99526c51303a655c4221
-
SHA256
99943e6c8ba298f43cd8f225f4df4cf625e622ba789e2b60eb3e41ebda62da41
-
SHA512
0a21b89937e00526434b9984896020001b4a107d09abbf64e6d051dd1d7290ec558f5e9c43b27afcabf5faca6324e5ff313aa897ead790d755ce5dd5e8d650a1
-
SSDEEP
98304:+DqPoBhc1aRxcSUDk36SAEdhvxWa9P5uR8yAVp2H:+DqP11Cxcxk3ZAEUadgR8yc4H
Score10/10-
Contacts a large (3213) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-