General
-
Target
6a418aaa10e27e7eea923ef6726fbd34_JaffaCakes118
-
Size
5.0MB
-
Sample
240523-jrl5vaaa52
-
MD5
6a418aaa10e27e7eea923ef6726fbd34
-
SHA1
b84144990435898fa8394e143f7ec758b96b45bf
-
SHA256
2ac0c26bc6c98f30eeba842f66e2db24a4b833176f9decaf0a31c2c2a858d82e
-
SHA512
9ea18a0651ceec4bc923db48938b6feadc52b0248f273503653b908b63a4784a245b156bb279f82852a4cad9f156d993799779326e24b7217c46577b26da2f05
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhvxWa9M/LvuDO:+DqPe1Cxcxk3ZAEUaOyO
Static task
static1
Behavioral task
behavioral1
Sample
6a418aaa10e27e7eea923ef6726fbd34_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
6a418aaa10e27e7eea923ef6726fbd34_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
6a418aaa10e27e7eea923ef6726fbd34_JaffaCakes118
-
Size
5.0MB
-
MD5
6a418aaa10e27e7eea923ef6726fbd34
-
SHA1
b84144990435898fa8394e143f7ec758b96b45bf
-
SHA256
2ac0c26bc6c98f30eeba842f66e2db24a4b833176f9decaf0a31c2c2a858d82e
-
SHA512
9ea18a0651ceec4bc923db48938b6feadc52b0248f273503653b908b63a4784a245b156bb279f82852a4cad9f156d993799779326e24b7217c46577b26da2f05
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhvxWa9M/LvuDO:+DqPe1Cxcxk3ZAEUaOyO
Score10/10-
Contacts a large (3035) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-