General
-
Target
4e6c5f2e8ed845b2a3b03db18c169284_JaffaCakes118
-
Size
5.0MB
-
Sample
240517-e5axhshd41
-
MD5
4e6c5f2e8ed845b2a3b03db18c169284
-
SHA1
902602d945d54c528acf71134a57490126118b7c
-
SHA256
9d793dff706f4db5ee042d8e953078093298578849151593641db17e479b739d
-
SHA512
7479fc1c3e61bee61661733832d5135d05b5a7b34c61b4d4441cc1df1b29b9be177f06334e03e1a6ee581770b46d8c6d7d90109b7026f437a4c60cd8b03ce798
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2:+DqPe1Cxcxk3ZAEUadzR8yc4
Static task
static1
Behavioral task
behavioral1
Sample
4e6c5f2e8ed845b2a3b03db18c169284_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
4e6c5f2e8ed845b2a3b03db18c169284_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
4e6c5f2e8ed845b2a3b03db18c169284_JaffaCakes118
-
Size
5.0MB
-
MD5
4e6c5f2e8ed845b2a3b03db18c169284
-
SHA1
902602d945d54c528acf71134a57490126118b7c
-
SHA256
9d793dff706f4db5ee042d8e953078093298578849151593641db17e479b739d
-
SHA512
7479fc1c3e61bee61661733832d5135d05b5a7b34c61b4d4441cc1df1b29b9be177f06334e03e1a6ee581770b46d8c6d7d90109b7026f437a4c60cd8b03ce798
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2:+DqPe1Cxcxk3ZAEUadzR8yc4
Score10/10-
Contacts a large (3226) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-