General
-
Target
8f5a868e8958068d3af0674ff3c24289_JaffaCakes118
-
Size
5.0MB
-
Sample
240602-zgfhbafd43
-
MD5
8f5a868e8958068d3af0674ff3c24289
-
SHA1
28562bf6361ae36a4ec4963099cb8fc76a0e7ae2
-
SHA256
5e1accb4db056135990fb1afc06296e66ea0ce7395599afda6d7468bdf9d2779
-
SHA512
c83d94f466d44640fddae63ea1b4c7fe3314ebaaf86f8ed91ccd8dd83d5956bb170ec2ae2f9feb622b542d6ed5a29d61d17b52dd71fc0a0ecf8ef4085e3f4c65
-
SSDEEP
98304:dDqPoBhz1aRxcSUDk36SAEdhvxWa9P593RzPfwo:dDqPe1Cxcxk3ZAEUadzRLfw
Static task
static1
Behavioral task
behavioral1
Sample
8f5a868e8958068d3af0674ff3c24289_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
8f5a868e8958068d3af0674ff3c24289_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
8f5a868e8958068d3af0674ff3c24289_JaffaCakes118
-
Size
5.0MB
-
MD5
8f5a868e8958068d3af0674ff3c24289
-
SHA1
28562bf6361ae36a4ec4963099cb8fc76a0e7ae2
-
SHA256
5e1accb4db056135990fb1afc06296e66ea0ce7395599afda6d7468bdf9d2779
-
SHA512
c83d94f466d44640fddae63ea1b4c7fe3314ebaaf86f8ed91ccd8dd83d5956bb170ec2ae2f9feb622b542d6ed5a29d61d17b52dd71fc0a0ecf8ef4085e3f4c65
-
SSDEEP
98304:dDqPoBhz1aRxcSUDk36SAEdhvxWa9P593RzPfwo:dDqPe1Cxcxk3ZAEUadzRLfw
Score10/10-
Contacts a large (3119) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-