General
-
Target
5d14531026b8490cbc359238ba824dfa_JaffaCakes118
-
Size
5.0MB
-
Sample
240520-elfzesag38
-
MD5
5d14531026b8490cbc359238ba824dfa
-
SHA1
24fdf3e92f949f26cdcc4072874c6270e49ee1e8
-
SHA256
7a3ed2b72925bb270b6fc6e7e35953dc12e51ec52942460b5b5a1230dd017934
-
SHA512
017b5a8d8b6c369886589bff17705c283b6c37bbd08a7d818ef4ccff7380e8f953b3b9ce1a6251f295501258b64173c6d113ce180a8d833d4b7d988dd48cc5fe
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQ43R8yAH1plAH:+DqPoBhz1aRxcSUDkz3R8yAVp2H
Static task
static1
Behavioral task
behavioral1
Sample
5d14531026b8490cbc359238ba824dfa_JaffaCakes118.dll
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
5d14531026b8490cbc359238ba824dfa_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
5d14531026b8490cbc359238ba824dfa_JaffaCakes118
-
Size
5.0MB
-
MD5
5d14531026b8490cbc359238ba824dfa
-
SHA1
24fdf3e92f949f26cdcc4072874c6270e49ee1e8
-
SHA256
7a3ed2b72925bb270b6fc6e7e35953dc12e51ec52942460b5b5a1230dd017934
-
SHA512
017b5a8d8b6c369886589bff17705c283b6c37bbd08a7d818ef4ccff7380e8f953b3b9ce1a6251f295501258b64173c6d113ce180a8d833d4b7d988dd48cc5fe
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQ43R8yAH1plAH:+DqPoBhz1aRxcSUDkz3R8yAVp2H
Score10/10-
Contacts a large (3330) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-