General
-
Target
97c230707c098541f1137306a9296cf4_JaffaCakes118
-
Size
25.2MB
-
Sample
240605-ljgw9sca7x
-
MD5
97c230707c098541f1137306a9296cf4
-
SHA1
36ba7d249c782c69ea2fab0adf3a2086dc4a8683
-
SHA256
bf8eb1161864513478ccfd7de8d844b069c5fc9224cd063c41069fe44da9d7c9
-
SHA512
7e9acc51971c38745ca952fea56390eb040f2314842abeb16e5893af1853b8218db4610f9e356f6c8a1e91fbb7b1a2e7a622940680ede3a650e95586b250c8cc
-
SSDEEP
786432:CrKx3rzBSAx71x1ncsuQ2nttTdXTA9qACsgQwMb:przB9x71xVMQQ5XoqIgQw
Behavioral task
behavioral1
Sample
97c230707c098541f1137306a9296cf4_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
97c230707c098541f1137306a9296cf4_JaffaCakes118
-
Size
25.2MB
-
MD5
97c230707c098541f1137306a9296cf4
-
SHA1
36ba7d249c782c69ea2fab0adf3a2086dc4a8683
-
SHA256
bf8eb1161864513478ccfd7de8d844b069c5fc9224cd063c41069fe44da9d7c9
-
SHA512
7e9acc51971c38745ca952fea56390eb040f2314842abeb16e5893af1853b8218db4610f9e356f6c8a1e91fbb7b1a2e7a622940680ede3a650e95586b250c8cc
-
SSDEEP
786432:CrKx3rzBSAx71x1ncsuQ2nttTdXTA9qACsgQwMb:przB9x71xVMQQ5XoqIgQw
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-