General
-
Target
ab9a268d6f83180b97d654ae87bd798d_JaffaCakes118
-
Size
5.0MB
-
Sample
240614-1lqdra1cmp
-
MD5
ab9a268d6f83180b97d654ae87bd798d
-
SHA1
4439672d2d2e5d7f9d75e77b41f730fd8f872efd
-
SHA256
b4f5ae81cfd91bef403be54221d5a6674d9fd49c3c99dd43cd6fd650d27124c9
-
SHA512
ace15525fda3efaa1227c7d6649365eb480c7395572a2231f968cb25f7150c86d0aa48b791b847525f671e55faea278bed508ab1f1bbd137a65aa33c35617eec
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2s:TDqPe1Cxcxk3ZAEUadzR8yc4s
Static task
static1
Behavioral task
behavioral1
Sample
ab9a268d6f83180b97d654ae87bd798d_JaffaCakes118.dll
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
ab9a268d6f83180b97d654ae87bd798d_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
ab9a268d6f83180b97d654ae87bd798d_JaffaCakes118
-
Size
5.0MB
-
MD5
ab9a268d6f83180b97d654ae87bd798d
-
SHA1
4439672d2d2e5d7f9d75e77b41f730fd8f872efd
-
SHA256
b4f5ae81cfd91bef403be54221d5a6674d9fd49c3c99dd43cd6fd650d27124c9
-
SHA512
ace15525fda3efaa1227c7d6649365eb480c7395572a2231f968cb25f7150c86d0aa48b791b847525f671e55faea278bed508ab1f1bbd137a65aa33c35617eec
-
SSDEEP
98304:TDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2s:TDqPe1Cxcxk3ZAEUadzR8yc4s
Score10/10-
Contacts a large (3265) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-