General
-
Target
84da86e1d2e59db93cc020449ce0aef2_JaffaCakes118
-
Size
5.0MB
-
Sample
240530-vphv7afg95
-
MD5
84da86e1d2e59db93cc020449ce0aef2
-
SHA1
617be79d07d31f87d6b887fe98a7a8ec63dfd8fe
-
SHA256
ed243aec4fbac510675082a7fce0a6ce5cd8e72a03b9a40b2fff4b0e7ab59999
-
SHA512
754c8da11d7b912575b66b16a270c28c0f052006b09abba704d7d4c12ffb45e9e8d5ef7c0057492744eb8537db7c3b26a994575462521bb1b1feb7a2cb3cc0e4
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2:+DqPe1Cxcxk3ZAEUadzR8yc4
Static task
static1
Behavioral task
behavioral1
Sample
84da86e1d2e59db93cc020449ce0aef2_JaffaCakes118.dll
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
84da86e1d2e59db93cc020449ce0aef2_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
84da86e1d2e59db93cc020449ce0aef2_JaffaCakes118
-
Size
5.0MB
-
MD5
84da86e1d2e59db93cc020449ce0aef2
-
SHA1
617be79d07d31f87d6b887fe98a7a8ec63dfd8fe
-
SHA256
ed243aec4fbac510675082a7fce0a6ce5cd8e72a03b9a40b2fff4b0e7ab59999
-
SHA512
754c8da11d7b912575b66b16a270c28c0f052006b09abba704d7d4c12ffb45e9e8d5ef7c0057492744eb8537db7c3b26a994575462521bb1b1feb7a2cb3cc0e4
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2:+DqPe1Cxcxk3ZAEUadzR8yc4
Score10/10-
Contacts a large (3262) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-