General
-
Target
582b8d34d7c1f342e7f1cfd7e30da015_JaffaCakes118
-
Size
5.0MB
-
Sample
240519-c74w9sed5z
-
MD5
582b8d34d7c1f342e7f1cfd7e30da015
-
SHA1
356111d0ef8bbab2f15061458d19d5e02bb000e2
-
SHA256
b5d2e5175e6951165e40c56907f7099bc4fe5cf34cf94e76b81f2cc3966e41b7
-
SHA512
80f8484c7d89ddc91334ea933ebee3a0943bb42a87657a97ad6dc0191ffd3c83589ce3f72c652a096f47769c3766078a05b9782656805eec59a287d3f78a7333
-
SSDEEP
49152:JnjQqMSPbcBVQej/14NZ6SAARdh5R8yAH1plAU3:d8qPoBRz1qZ6SAEdh5R8yAVp2U3
Static task
static1
Behavioral task
behavioral1
Sample
582b8d34d7c1f342e7f1cfd7e30da015_JaffaCakes118.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
582b8d34d7c1f342e7f1cfd7e30da015_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
582b8d34d7c1f342e7f1cfd7e30da015_JaffaCakes118
-
Size
5.0MB
-
MD5
582b8d34d7c1f342e7f1cfd7e30da015
-
SHA1
356111d0ef8bbab2f15061458d19d5e02bb000e2
-
SHA256
b5d2e5175e6951165e40c56907f7099bc4fe5cf34cf94e76b81f2cc3966e41b7
-
SHA512
80f8484c7d89ddc91334ea933ebee3a0943bb42a87657a97ad6dc0191ffd3c83589ce3f72c652a096f47769c3766078a05b9782656805eec59a287d3f78a7333
-
SSDEEP
49152:JnjQqMSPbcBVQej/14NZ6SAARdh5R8yAH1plAU3:d8qPoBRz1qZ6SAEdh5R8yAVp2U3
Score10/10-
Contacts a large (3286) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Modifies file permissions
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-