General
-
Target
52cd053b0ecf5d351a4c376029d78ae0_JaffaCakes118
-
Size
5.0MB
-
Sample
240518-dswg1shf93
-
MD5
52cd053b0ecf5d351a4c376029d78ae0
-
SHA1
770035329cd2ca417f5d1e23782d067244d4064e
-
SHA256
4aa61b6b79b54ee13829fe08476e23bbeb325e31d4cf486bd86ff061b4bab022
-
SHA512
12f6e931219352d6f67cbf28c6caa108bc2bfc6735bc1532c279fefb230821602549344a4418a68ea63cb13dd32d27a3d2d128c1804944f01aea305d3ce602ff
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVpEmFe:TDqPe1Cxcxk3ZAEUadzR8yc
Static task
static1
Behavioral task
behavioral1
Sample
52cd053b0ecf5d351a4c376029d78ae0_JaffaCakes118.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
52cd053b0ecf5d351a4c376029d78ae0_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
52cd053b0ecf5d351a4c376029d78ae0_JaffaCakes118
-
Size
5.0MB
-
MD5
52cd053b0ecf5d351a4c376029d78ae0
-
SHA1
770035329cd2ca417f5d1e23782d067244d4064e
-
SHA256
4aa61b6b79b54ee13829fe08476e23bbeb325e31d4cf486bd86ff061b4bab022
-
SHA512
12f6e931219352d6f67cbf28c6caa108bc2bfc6735bc1532c279fefb230821602549344a4418a68ea63cb13dd32d27a3d2d128c1804944f01aea305d3ce602ff
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVpEmFe:TDqPe1Cxcxk3ZAEUadzR8yc
Score10/10-
Contacts a large (3315) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-