General
-
Target
50c78f65284324b6fc52a393837f9593_JaffaCakes118
-
Size
5.0MB
-
Sample
240517-wn7zcsbh34
-
MD5
50c78f65284324b6fc52a393837f9593
-
SHA1
b8a49a66ecd755063c9eeaf26090ef5dec956b21
-
SHA256
9f921c2792d619330119c81978aa87c3c3da127bbb8d5b8a48d71b3aa1a2af7a
-
SHA512
f26bf5b723889a24a29216c1f411cba2f6f456342c10d1afd5106d3e94e57e7ecf31a71a63dcee338bf9fa381bb4879f30e0768bfc9781490b0c64788c1916ea
-
SSDEEP
49152:SnjQqMSPbcBVQej/1INRx+TSqTdX1HkQ:+8qPoBhz1aRxcSUDk
Static task
static1
Behavioral task
behavioral1
Sample
50c78f65284324b6fc52a393837f9593_JaffaCakes118.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
50c78f65284324b6fc52a393837f9593_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
50c78f65284324b6fc52a393837f9593_JaffaCakes118
-
Size
5.0MB
-
MD5
50c78f65284324b6fc52a393837f9593
-
SHA1
b8a49a66ecd755063c9eeaf26090ef5dec956b21
-
SHA256
9f921c2792d619330119c81978aa87c3c3da127bbb8d5b8a48d71b3aa1a2af7a
-
SHA512
f26bf5b723889a24a29216c1f411cba2f6f456342c10d1afd5106d3e94e57e7ecf31a71a63dcee338bf9fa381bb4879f30e0768bfc9781490b0c64788c1916ea
-
SSDEEP
49152:SnjQqMSPbcBVQej/1INRx+TSqTdX1HkQ:+8qPoBhz1aRxcSUDk
Score10/10-
Contacts a large (3335) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-