General
-
Target
63869762e9a696591b2cf549cd0566f8_JaffaCakes118
-
Size
5.0MB
-
Sample
240521-q79peagc74
-
MD5
63869762e9a696591b2cf549cd0566f8
-
SHA1
564f3dc0e995eb7b5892e9dfb35a078cb0ad26aa
-
SHA256
cb790481afa62af1f197b2b87c268f38cfd875bf26de9baa191c50654a0d7014
-
SHA512
8d261ab8db902b1f3f4f4e6cdb3ef7d37f42438fe85ac9dbd6c29205d69f0047a70280d4052384a6b86c11e2d7a598e0020b69fe24c0984c6e86d89277597c2a
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2:TDqPe1Cxcxk3ZAEUadzR8yc4
Static task
static1
Behavioral task
behavioral1
Sample
63869762e9a696591b2cf549cd0566f8_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
63869762e9a696591b2cf549cd0566f8_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
63869762e9a696591b2cf549cd0566f8_JaffaCakes118
-
Size
5.0MB
-
MD5
63869762e9a696591b2cf549cd0566f8
-
SHA1
564f3dc0e995eb7b5892e9dfb35a078cb0ad26aa
-
SHA256
cb790481afa62af1f197b2b87c268f38cfd875bf26de9baa191c50654a0d7014
-
SHA512
8d261ab8db902b1f3f4f4e6cdb3ef7d37f42438fe85ac9dbd6c29205d69f0047a70280d4052384a6b86c11e2d7a598e0020b69fe24c0984c6e86d89277597c2a
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2:TDqPe1Cxcxk3ZAEUadzR8yc4
Score10/10-
Contacts a large (3257) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-