General
-
Target
95d7dfd4839a0e1fb8096d4895353dd0_JaffaCakes118
-
Size
5.0MB
-
Sample
240604-w2ly2sfc5w
-
MD5
95d7dfd4839a0e1fb8096d4895353dd0
-
SHA1
e0551b5726c61dcdf19360ee9ec6e3471a13090a
-
SHA256
c6b1319da2b044c6b7577f8486cf6460fa87e696d6654a0c6b7470b727954023
-
SHA512
5058c4bbaa3c1640b3b3cca68f7513525af17cd8a76dae62d546307552296c55e1d9662bd5c21c14f62b414be755fd011fcfebcc32f242293566368b9a5f8662
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEl3R8yAVp2U3:+DqPe1Cxcxk3ZAEFR8yc4U
Static task
static1
Behavioral task
behavioral1
Sample
95d7dfd4839a0e1fb8096d4895353dd0_JaffaCakes118.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
95d7dfd4839a0e1fb8096d4895353dd0_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
95d7dfd4839a0e1fb8096d4895353dd0_JaffaCakes118
-
Size
5.0MB
-
MD5
95d7dfd4839a0e1fb8096d4895353dd0
-
SHA1
e0551b5726c61dcdf19360ee9ec6e3471a13090a
-
SHA256
c6b1319da2b044c6b7577f8486cf6460fa87e696d6654a0c6b7470b727954023
-
SHA512
5058c4bbaa3c1640b3b3cca68f7513525af17cd8a76dae62d546307552296c55e1d9662bd5c21c14f62b414be755fd011fcfebcc32f242293566368b9a5f8662
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAEl3R8yAVp2U3:+DqPe1Cxcxk3ZAEFR8yc4U
Score10/10-
Contacts a large (3306) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Modifies file permissions
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-