General
-
Target
91ecf5beae030804c75c8dc485de5065_JaffaCakes118
-
Size
5.0MB
-
Sample
240603-qkcfdsff91
-
MD5
91ecf5beae030804c75c8dc485de5065
-
SHA1
c83f093fb16282d9ce931187215e191dd147ead7
-
SHA256
f6eaf849d6c474c5db695fa04bce7d4393771f3ae0a1862ada36ce7790395f67
-
SHA512
4a38b5f2d8680dc88159241c0a1fb5c59df5eaab8b6fd482ea9cb45f9ae335fc85b25d539e409fd2e8b1cfa6bc96a1dc06cde87ef2b6652ca715bc9ccaa3f8f4
-
SSDEEP
49152:RnsEMSPbcBVQejXx+TSqTdX1HkQo6SAARdhnv:1fPoBhDxcSUDk36SAEdhv
Static task
static1
Behavioral task
behavioral1
Sample
91ecf5beae030804c75c8dc485de5065_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
91ecf5beae030804c75c8dc485de5065_JaffaCakes118.dll
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
91ecf5beae030804c75c8dc485de5065_JaffaCakes118
-
Size
5.0MB
-
MD5
91ecf5beae030804c75c8dc485de5065
-
SHA1
c83f093fb16282d9ce931187215e191dd147ead7
-
SHA256
f6eaf849d6c474c5db695fa04bce7d4393771f3ae0a1862ada36ce7790395f67
-
SHA512
4a38b5f2d8680dc88159241c0a1fb5c59df5eaab8b6fd482ea9cb45f9ae335fc85b25d539e409fd2e8b1cfa6bc96a1dc06cde87ef2b6652ca715bc9ccaa3f8f4
-
SSDEEP
49152:RnsEMSPbcBVQejXx+TSqTdX1HkQo6SAARdhnv:1fPoBhDxcSUDk36SAEdhv
Score10/10-
Contacts a large (3169) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-