General
-
Target
4dfe2dbac146b2e88c27965c38b88039_JaffaCakes118
-
Size
5.0MB
-
Sample
240517-cjlqsacg47
-
MD5
4dfe2dbac146b2e88c27965c38b88039
-
SHA1
dffaeb29cad621341f9b7853f79d3f1310546aaa
-
SHA256
1bc22e4a4096e74ad5d90b8c4805d8c2f30fcd44f8c7d69ed4704cd02776992f
-
SHA512
c759a2059c0cad5e9c84b0b672339cfa133903b8541bbe59d560876c899661ddfdf0dd2fc7db3ca1ad9d107aa2dabf54412cf78c22ce3310a3166c8f7bbaf2ed
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAjvxWa9W593R8yAVp2H:+DqPe1Cxcxk3ZAUa0zR8yc4H
Static task
static1
Behavioral task
behavioral1
Sample
4dfe2dbac146b2e88c27965c38b88039_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
4dfe2dbac146b2e88c27965c38b88039_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
4dfe2dbac146b2e88c27965c38b88039_JaffaCakes118
-
Size
5.0MB
-
MD5
4dfe2dbac146b2e88c27965c38b88039
-
SHA1
dffaeb29cad621341f9b7853f79d3f1310546aaa
-
SHA256
1bc22e4a4096e74ad5d90b8c4805d8c2f30fcd44f8c7d69ed4704cd02776992f
-
SHA512
c759a2059c0cad5e9c84b0b672339cfa133903b8541bbe59d560876c899661ddfdf0dd2fc7db3ca1ad9d107aa2dabf54412cf78c22ce3310a3166c8f7bbaf2ed
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAjvxWa9W593R8yAVp2H:+DqPe1Cxcxk3ZAUa0zR8yc4H
Score10/10-
Contacts a large (3216) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-