General
-
Target
6632b2f8e2f77788698cbb6804e080a2_JaffaCakes118
-
Size
5.0MB
-
Sample
240522-gerhpadh9t
-
MD5
6632b2f8e2f77788698cbb6804e080a2
-
SHA1
b3bacd5a6985aea7b2a36b6f284c515f53a35e29
-
SHA256
91b70f9b05a9d6d22d2f8f35ea31d95f27747b89d1b31dee2f3fadbe65bd970b
-
SHA512
594c44c12b1322b346a9b8b9baaf082e5b0038ca910dc4c3a320c2df2ac95bf6e7961ef921e062e8bf3d1bd7b7f4591bf2cbaca815d06cdceb9a56c1d9750ee4
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQUR8yAH1plAH:+DqPoBhz1aRxcSUDkNR8yAVp2H
Static task
static1
Behavioral task
behavioral1
Sample
6632b2f8e2f77788698cbb6804e080a2_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
6632b2f8e2f77788698cbb6804e080a2_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
6632b2f8e2f77788698cbb6804e080a2_JaffaCakes118
-
Size
5.0MB
-
MD5
6632b2f8e2f77788698cbb6804e080a2
-
SHA1
b3bacd5a6985aea7b2a36b6f284c515f53a35e29
-
SHA256
91b70f9b05a9d6d22d2f8f35ea31d95f27747b89d1b31dee2f3fadbe65bd970b
-
SHA512
594c44c12b1322b346a9b8b9baaf082e5b0038ca910dc4c3a320c2df2ac95bf6e7961ef921e062e8bf3d1bd7b7f4591bf2cbaca815d06cdceb9a56c1d9750ee4
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQUR8yAH1plAH:+DqPoBhz1aRxcSUDkNR8yAVp2H
Score10/10-
Contacts a large (3283) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-