General
-
Target
95b2c12e9afeaed5fbe056e49fc1eaaa_JaffaCakes118
-
Size
5.0MB
-
Sample
240604-v4wetsef93
-
MD5
95b2c12e9afeaed5fbe056e49fc1eaaa
-
SHA1
223e0d98f84870b2a7d925b62eba5dcc64da6c82
-
SHA256
285a80c30114cd0759ce092586eb9d3ac5ebdeb01e2bdc062a74b7c0a9a6c45a
-
SHA512
6404dca3869606d3f39a0997040320755094f4a6bc11c5d470cf444e3f3089037a8f89985788a68d39a52fa4aa7c6058b82618fc253604c1b585ffebfc8d00f5
-
SSDEEP
98304:+DqPoBhzBRxcSUDk36SAEdhvxWa9P593R8yAVp2H:+DqPefxcxk3ZAEUadzR8yc4H
Static task
static1
Behavioral task
behavioral1
Sample
95b2c12e9afeaed5fbe056e49fc1eaaa_JaffaCakes118.dll
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
95b2c12e9afeaed5fbe056e49fc1eaaa_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
95b2c12e9afeaed5fbe056e49fc1eaaa_JaffaCakes118
-
Size
5.0MB
-
MD5
95b2c12e9afeaed5fbe056e49fc1eaaa
-
SHA1
223e0d98f84870b2a7d925b62eba5dcc64da6c82
-
SHA256
285a80c30114cd0759ce092586eb9d3ac5ebdeb01e2bdc062a74b7c0a9a6c45a
-
SHA512
6404dca3869606d3f39a0997040320755094f4a6bc11c5d470cf444e3f3089037a8f89985788a68d39a52fa4aa7c6058b82618fc253604c1b585ffebfc8d00f5
-
SSDEEP
98304:+DqPoBhzBRxcSUDk36SAEdhvxWa9P593R8yAVp2H:+DqPefxcxk3ZAEUadzR8yc4H
Score10/10-
Contacts a large (3088) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-