General
-
Target
8fac35125dd08082cd705c6f4863b102_JaffaCakes118
-
Size
5.0MB
-
Sample
240602-2hy26aaf58
-
MD5
8fac35125dd08082cd705c6f4863b102
-
SHA1
947c39f8f0f782fedee7b1c69cc7d3affc6b5966
-
SHA256
bd5542da958f0dd35a98a7d70de6720a446549c45bab17cd4187c72a353095d9
-
SHA512
7d68970067ba379b0953ed9e7ea731732bbd57d691f233db92e58d1a93222417cbb1bb68c46fec5b8994c4368908c398b979736adc55be78cf4d8189a0297ce8
-
SSDEEP
49152:SnAQqMSPbcBVFhnvxJM0H9PAMEcaEau3R8yAH1plAH:+DqPoBrhvxWa9P593R8yAVp2H
Static task
static1
Behavioral task
behavioral1
Sample
8fac35125dd08082cd705c6f4863b102_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
8fac35125dd08082cd705c6f4863b102_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
8fac35125dd08082cd705c6f4863b102_JaffaCakes118
-
Size
5.0MB
-
MD5
8fac35125dd08082cd705c6f4863b102
-
SHA1
947c39f8f0f782fedee7b1c69cc7d3affc6b5966
-
SHA256
bd5542da958f0dd35a98a7d70de6720a446549c45bab17cd4187c72a353095d9
-
SHA512
7d68970067ba379b0953ed9e7ea731732bbd57d691f233db92e58d1a93222417cbb1bb68c46fec5b8994c4368908c398b979736adc55be78cf4d8189a0297ce8
-
SSDEEP
49152:SnAQqMSPbcBVFhnvxJM0H9PAMEcaEau3R8yAH1plAH:+DqPoBrhvxWa9P593R8yAVp2H
Score10/10-
Contacts a large (3330) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-