General
-
Target
7483fb05a990bfa1188aa7295e655abf_JaffaCakes118
-
Size
289KB
-
Sample
240526-gk3sxaha9t
-
MD5
7483fb05a990bfa1188aa7295e655abf
-
SHA1
91481bbd0711c79bab401bbd9d224e0a0ca04d5c
-
SHA256
77358eaf8e4f121a284aa0f68c917ef0669b0fb7075d006c907acc4b80788aea
-
SHA512
095eca43700e8596b4471df41ee094d42d7ec4f4045cfeaa74cd39df73358026dea044f6dc798870a9145e149dd581c8efee97135b4d25c84ea8b0b843d73ae0
-
SSDEEP
3072:rEm2tkgfVv3taMU3yOM3DuqHdD0bUwHmE4U+htm6:rERp3taLT6
Static task
static1
Behavioral task
behavioral1
Sample
7483fb05a990bfa1188aa7295e655abf_JaffaCakes118.html
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
7483fb05a990bfa1188aa7295e655abf_JaffaCakes118.html
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
7483fb05a990bfa1188aa7295e655abf_JaffaCakes118
-
Size
289KB
-
MD5
7483fb05a990bfa1188aa7295e655abf
-
SHA1
91481bbd0711c79bab401bbd9d224e0a0ca04d5c
-
SHA256
77358eaf8e4f121a284aa0f68c917ef0669b0fb7075d006c907acc4b80788aea
-
SHA512
095eca43700e8596b4471df41ee094d42d7ec4f4045cfeaa74cd39df73358026dea044f6dc798870a9145e149dd581c8efee97135b4d25c84ea8b0b843d73ae0
-
SSDEEP
3072:rEm2tkgfVv3taMU3yOM3DuqHdD0bUwHmE4U+htm6:rERp3taLT6
Score9/10-
Renames multiple (51) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-