General
-
Target
a3772d1f0cb840461978b558e124f9a9_JaffaCakes118
-
Size
5.0MB
-
Sample
240613-cd8ncstfqm
-
MD5
a3772d1f0cb840461978b558e124f9a9
-
SHA1
8ab075488cde63fb1c48356098485a912516f9e0
-
SHA256
ae0c2988b7176b5ae96a1c2f35f7e71a38018eb0fa3938320d85afa6e8759145
-
SHA512
3bf5a068061588b0f6d2e8da60fc00bc45202e840cba619609166dd24e8dc0a7a3237a6c3a651ebb5568bc262c719e9af6d880693438b05ff882ff02605a894a
-
SSDEEP
98304:+DqPoBG1aRxcSUDk36SAEdhvxWa9P593R8yAVp2H:+DqPR1Cxcxk3ZAEUadzR8yc4H
Static task
static1
Behavioral task
behavioral1
Sample
a3772d1f0cb840461978b558e124f9a9_JaffaCakes118.dll
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
a3772d1f0cb840461978b558e124f9a9_JaffaCakes118.dll
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
a3772d1f0cb840461978b558e124f9a9_JaffaCakes118
-
Size
5.0MB
-
MD5
a3772d1f0cb840461978b558e124f9a9
-
SHA1
8ab075488cde63fb1c48356098485a912516f9e0
-
SHA256
ae0c2988b7176b5ae96a1c2f35f7e71a38018eb0fa3938320d85afa6e8759145
-
SHA512
3bf5a068061588b0f6d2e8da60fc00bc45202e840cba619609166dd24e8dc0a7a3237a6c3a651ebb5568bc262c719e9af6d880693438b05ff882ff02605a894a
-
SSDEEP
98304:+DqPoBG1aRxcSUDk36SAEdhvxWa9P593R8yAVp2H:+DqPR1Cxcxk3ZAEUadzR8yc4H
Score10/10-
Contacts a large (2817) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-