General
-
Target
874f580fc0d1c86aed481c4a056249f7_JaffaCakes118
-
Size
5.0MB
-
Sample
240531-rqf67sbc31
-
MD5
874f580fc0d1c86aed481c4a056249f7
-
SHA1
b5f1dc1c2c78f04efd87f15a2a4e7413f7a0fb0a
-
SHA256
c06cc1cbe70329aee778fd8e032187dd411c1035cb0ce4f7553b7c777dce91cf
-
SHA512
34a96890c46bcabbfd3aa529dc2e99486d494c0d500f80d55ecd7c6766ba30a5b714de386bfb275b14ba0a4cd57bf406aa051045aa247ba014a89bc3e992698d
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhG3R8yAVp2H:+DqPe1Cxcxk3ZAE8R8yc4H
Static task
static1
Behavioral task
behavioral1
Sample
874f580fc0d1c86aed481c4a056249f7_JaffaCakes118.dll
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
874f580fc0d1c86aed481c4a056249f7_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
874f580fc0d1c86aed481c4a056249f7_JaffaCakes118
-
Size
5.0MB
-
MD5
874f580fc0d1c86aed481c4a056249f7
-
SHA1
b5f1dc1c2c78f04efd87f15a2a4e7413f7a0fb0a
-
SHA256
c06cc1cbe70329aee778fd8e032187dd411c1035cb0ce4f7553b7c777dce91cf
-
SHA512
34a96890c46bcabbfd3aa529dc2e99486d494c0d500f80d55ecd7c6766ba30a5b714de386bfb275b14ba0a4cd57bf406aa051045aa247ba014a89bc3e992698d
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEdhG3R8yAVp2H:+DqPe1Cxcxk3ZAE8R8yc4H
Score10/10-
Contacts a large (3292) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-