General
-
Target
612b79c7d1edab76db51047ccb5f85c1_JaffaCakes118
-
Size
5.0MB
-
Sample
240520-2l99laaf9t
-
MD5
612b79c7d1edab76db51047ccb5f85c1
-
SHA1
cf3b6de3fc093574d3a4f580cbc0ae8bbea19dbf
-
SHA256
f495d34a21134295ddf1425fd4f471b659fd46e8d35e954bcd02b81b3dfdd3ee
-
SHA512
560b591d7dd743f2cc37899be411bbf6d9c84e8f2f4cb5b71b967b0b6b813b4b34b151af6ec62caa3c326e54f429cebef768180129c78322f1bd8f99d2c6b97d
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTJ6SAARdhnvxJM0H9PAMEcaEau3I:+DqPoBhz1aRxcSUJ6SAEdhvxWa9P593
Static task
static1
Behavioral task
behavioral1
Sample
612b79c7d1edab76db51047ccb5f85c1_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
612b79c7d1edab76db51047ccb5f85c1_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
612b79c7d1edab76db51047ccb5f85c1_JaffaCakes118
-
Size
5.0MB
-
MD5
612b79c7d1edab76db51047ccb5f85c1
-
SHA1
cf3b6de3fc093574d3a4f580cbc0ae8bbea19dbf
-
SHA256
f495d34a21134295ddf1425fd4f471b659fd46e8d35e954bcd02b81b3dfdd3ee
-
SHA512
560b591d7dd743f2cc37899be411bbf6d9c84e8f2f4cb5b71b967b0b6b813b4b34b151af6ec62caa3c326e54f429cebef768180129c78322f1bd8f99d2c6b97d
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTJ6SAARdhnvxJM0H9PAMEcaEau3I:+DqPoBhz1aRxcSUJ6SAEdhvxWa9P593
Score10/10-
Contacts a large (2990) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-