General
-
Target
914fa8b79986c8b1811f42daf3858e4c_JaffaCakes118
-
Size
5.0MB
-
Sample
240603-lndemsbf46
-
MD5
914fa8b79986c8b1811f42daf3858e4c
-
SHA1
769a5a99cb0daeb4817f6e5708a31387cd49fc8e
-
SHA256
0a7ae3f256bbea33dafdab8ac7bfe206c2527a03bd6f3f4185ebd4c8593f170c
-
SHA512
24ab0f9127850edd312ecd352815049496aa06cfef13b5c0a89f234678b84a2ba6914d3454ce793b8fb08e2f03de8bbb7d6206ec9f1d9792c927930be2bd7230
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJMDlAH:+DqPoBhz1aRxcSUDk36SAEdhvxWD2H
Static task
static1
Behavioral task
behavioral1
Sample
914fa8b79986c8b1811f42daf3858e4c_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
914fa8b79986c8b1811f42daf3858e4c_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
914fa8b79986c8b1811f42daf3858e4c_JaffaCakes118
-
Size
5.0MB
-
MD5
914fa8b79986c8b1811f42daf3858e4c
-
SHA1
769a5a99cb0daeb4817f6e5708a31387cd49fc8e
-
SHA256
0a7ae3f256bbea33dafdab8ac7bfe206c2527a03bd6f3f4185ebd4c8593f170c
-
SHA512
24ab0f9127850edd312ecd352815049496aa06cfef13b5c0a89f234678b84a2ba6914d3454ce793b8fb08e2f03de8bbb7d6206ec9f1d9792c927930be2bd7230
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnvxJMDlAH:+DqPoBhz1aRxcSUDk36SAEdhvxWD2H
Score10/10-
Contacts a large (3145) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-