General
-
Target
819bce176cd9633b54748e86f1cde30d_JaffaCakes118
-
Size
3.6MB
-
Sample
240529-xxm6zsef2v
-
MD5
819bce176cd9633b54748e86f1cde30d
-
SHA1
ef957b1668edb1e6735dd278d3caeebfc22f18ea
-
SHA256
6db4ba167c72ba123533ca868601ee3014b8c25d256fdfa35094ed5c26c89511
-
SHA512
7348d3ff36a2e3df3d5b0d295e0e8f69114fc5d7c992d9c1bde15c2f6aa3b1bb4fcf6e51cfc3278cdc555231ef95dad7ed29861e512ef8f735e9fe7d3a6a3df3
-
SSDEEP
49152:VnjQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAAg8E9LE:Z8qPoBhz1aRxcSUDk36SAjrA
Static task
static1
Behavioral task
behavioral1
Sample
819bce176cd9633b54748e86f1cde30d_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
819bce176cd9633b54748e86f1cde30d_JaffaCakes118.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
819bce176cd9633b54748e86f1cde30d_JaffaCakes118
-
Size
3.6MB
-
MD5
819bce176cd9633b54748e86f1cde30d
-
SHA1
ef957b1668edb1e6735dd278d3caeebfc22f18ea
-
SHA256
6db4ba167c72ba123533ca868601ee3014b8c25d256fdfa35094ed5c26c89511
-
SHA512
7348d3ff36a2e3df3d5b0d295e0e8f69114fc5d7c992d9c1bde15c2f6aa3b1bb4fcf6e51cfc3278cdc555231ef95dad7ed29861e512ef8f735e9fe7d3a6a3df3
-
SSDEEP
49152:VnjQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAAg8E9LE:Z8qPoBhz1aRxcSUDk36SAjrA
Score10/10-
Contacts a large (3167) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-