General
-
Target
5f6a324dca637003e4e3176a6f3e005a_JaffaCakes118
-
Size
5.0MB
-
Sample
240520-q5tkeacg73
-
MD5
5f6a324dca637003e4e3176a6f3e005a
-
SHA1
f0bccfb37e2a5afe27e79d9dcca65e239cc18f31
-
SHA256
6c92686a13c94ac170d887061a2d82bfb922b22d4aaeefb6665a811087ea85e9
-
SHA512
667e1fd45bce9fb31d763f4b2753a3af97bfd562bd58f05a32b718e7b2f3502b417d9f04a5afd03b7e225ea8a613a32ab9b2a66c5b1980d4e27f1db13387df90
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAAu3R8yAH1plA:+DqPoBhz1aRxcSUDk36SAt3R8yAVp2
Static task
static1
Behavioral task
behavioral1
Sample
5f6a324dca637003e4e3176a6f3e005a_JaffaCakes118.dll
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
5f6a324dca637003e4e3176a6f3e005a_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
5f6a324dca637003e4e3176a6f3e005a_JaffaCakes118
-
Size
5.0MB
-
MD5
5f6a324dca637003e4e3176a6f3e005a
-
SHA1
f0bccfb37e2a5afe27e79d9dcca65e239cc18f31
-
SHA256
6c92686a13c94ac170d887061a2d82bfb922b22d4aaeefb6665a811087ea85e9
-
SHA512
667e1fd45bce9fb31d763f4b2753a3af97bfd562bd58f05a32b718e7b2f3502b417d9f04a5afd03b7e225ea8a613a32ab9b2a66c5b1980d4e27f1db13387df90
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAAu3R8yAH1plA:+DqPoBhz1aRxcSUDk36SAt3R8yAVp2
Score10/10-
Contacts a large (3335) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-