General
-
Target
5cab58ca89303bf395a7a21c0d81b891_JaffaCakes118
-
Size
5.0MB
-
Sample
240520-cpxegafe5v
-
MD5
5cab58ca89303bf395a7a21c0d81b891
-
SHA1
0354d0a4ebb2255d10f3dc68c15c74bb745fd082
-
SHA256
235303a669bc611ea436a4a300c3171c085cc32c0d3dad4f4c720ebe64f8c0d7
-
SHA512
c84b21fc53e24f649103a9a1e43e6511889e9cc1a98366aa890d173f7c5be1700533bc97ed6caac0da0de895558af5fd7be5e47749f645ba254360c1c74ad15d
-
SSDEEP
24576:SbLgddQhfdmMSirYbcMNgef0QeQjG/D8kIqRdsb53K7jSWl1y:SnAQqMSPbcBVQej/1dsNwHl1
Static task
static1
Behavioral task
behavioral1
Sample
5cab58ca89303bf395a7a21c0d81b891_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
5cab58ca89303bf395a7a21c0d81b891_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
5cab58ca89303bf395a7a21c0d81b891_JaffaCakes118
-
Size
5.0MB
-
MD5
5cab58ca89303bf395a7a21c0d81b891
-
SHA1
0354d0a4ebb2255d10f3dc68c15c74bb745fd082
-
SHA256
235303a669bc611ea436a4a300c3171c085cc32c0d3dad4f4c720ebe64f8c0d7
-
SHA512
c84b21fc53e24f649103a9a1e43e6511889e9cc1a98366aa890d173f7c5be1700533bc97ed6caac0da0de895558af5fd7be5e47749f645ba254360c1c74ad15d
-
SSDEEP
24576:SbLgddQhfdmMSirYbcMNgef0QeQjG/D8kIqRdsb53K7jSWl1y:SnAQqMSPbcBVQej/1dsNwHl1
Score10/10-
Contacts a large (3151) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-