General
-
Target
6e83b9c380628cc49366f80196828fb4_JaffaCakes118
-
Size
5.0MB
-
Sample
240524-plp77sbd6z
-
MD5
6e83b9c380628cc49366f80196828fb4
-
SHA1
ac49392674690e8fa4f832f06887d0f8e471384e
-
SHA256
523389f571f0f681a3d386983b6b215260c8178ad0fe9db89dbae71430ccd5ae
-
SHA512
04c1feb5bf0415058507a410469a0ba70797f35e365684c9cc92e35fcc7b21b26228ba94fd3c985db276ba572a270fdd6ae2c34aebbdc31638d70c277cc4f3af
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9PAME:+DqPoBhz1aRxcSUDk36SAEdhvxWa9P5
Static task
static1
Behavioral task
behavioral1
Sample
6e83b9c380628cc49366f80196828fb4_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
6e83b9c380628cc49366f80196828fb4_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
6e83b9c380628cc49366f80196828fb4_JaffaCakes118
-
Size
5.0MB
-
MD5
6e83b9c380628cc49366f80196828fb4
-
SHA1
ac49392674690e8fa4f832f06887d0f8e471384e
-
SHA256
523389f571f0f681a3d386983b6b215260c8178ad0fe9db89dbae71430ccd5ae
-
SHA512
04c1feb5bf0415058507a410469a0ba70797f35e365684c9cc92e35fcc7b21b26228ba94fd3c985db276ba572a270fdd6ae2c34aebbdc31638d70c277cc4f3af
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJM0H9PAME:+DqPoBhz1aRxcSUDk36SAEdhvxWa9P5
Score10/10-
Contacts a large (3220) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-