General
-
Target
a9c83055748bd40c550c395f81f7738a_JaffaCakes118
-
Size
5.0MB
-
Sample
240614-p5r6xa1frc
-
MD5
a9c83055748bd40c550c395f81f7738a
-
SHA1
462d4bc5478bbd040f71897ccba2566bc4a2036f
-
SHA256
de61ad14bc39bc894068f5eefe3cf6ee3c4ccbf7efa8ff575a117300d6f9f62b
-
SHA512
0be57c58a1d948de216332cef13600af554a4e0f5d395ff92f51bc574dbd5d0d32ceeb19d5f0e4532fb972141cc93b7de01f0ea9d4b88ff261bed07c67a21f98
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAldhvxWa9P593R8yAVp2H:+DqPe1Cxcxk3ZAlUadzR8yc4H
Static task
static1
Behavioral task
behavioral1
Sample
a9c83055748bd40c550c395f81f7738a_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
a9c83055748bd40c550c395f81f7738a_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
a9c83055748bd40c550c395f81f7738a_JaffaCakes118
-
Size
5.0MB
-
MD5
a9c83055748bd40c550c395f81f7738a
-
SHA1
462d4bc5478bbd040f71897ccba2566bc4a2036f
-
SHA256
de61ad14bc39bc894068f5eefe3cf6ee3c4ccbf7efa8ff575a117300d6f9f62b
-
SHA512
0be57c58a1d948de216332cef13600af554a4e0f5d395ff92f51bc574dbd5d0d32ceeb19d5f0e4532fb972141cc93b7de01f0ea9d4b88ff261bed07c67a21f98
-
SSDEEP
98304:+DqPoBhz1aRxcSUDk36SAldhvxWa9P593R8yAVp2H:+DqPe1Cxcxk3ZAlUadzR8yc4H
Score10/10-
Contacts a large (3080) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-