General
-
Target
ad9925c0d7fda9b48a58439dc7a287c1_JaffaCakes118
-
Size
3.6MB
-
Sample
240615-kntaesxgqk
-
MD5
ad9925c0d7fda9b48a58439dc7a287c1
-
SHA1
0e912a64bf51d481714b087b4ea10f76aea71fbb
-
SHA256
46c128c262aa0029c228ed4313efcfa2eef29728bbd166998365429500129c75
-
SHA512
d718adda7f8fbaa3839c998d31afa3381157642c2d824b2bb6018b5ad3631346b78d974192a6cbc88792a2f577adeec25de19768687c3fc8cc752a7632ca276b
-
SSDEEP
24576:2bLgddQhfdmMSirYbcMNgef0QeQjG/D8kIqpbOSSqTPVXmiHkQg6eX6SASk+Kdq/:2nAQqMSPbcBVQej/JSqTdX1HkQo6SAA
Static task
static1
Behavioral task
behavioral1
Sample
ad9925c0d7fda9b48a58439dc7a287c1_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
ad9925c0d7fda9b48a58439dc7a287c1_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
ad9925c0d7fda9b48a58439dc7a287c1_JaffaCakes118
-
Size
3.6MB
-
MD5
ad9925c0d7fda9b48a58439dc7a287c1
-
SHA1
0e912a64bf51d481714b087b4ea10f76aea71fbb
-
SHA256
46c128c262aa0029c228ed4313efcfa2eef29728bbd166998365429500129c75
-
SHA512
d718adda7f8fbaa3839c998d31afa3381157642c2d824b2bb6018b5ad3631346b78d974192a6cbc88792a2f577adeec25de19768687c3fc8cc752a7632ca276b
-
SSDEEP
24576:2bLgddQhfdmMSirYbcMNgef0QeQjG/D8kIqpbOSSqTPVXmiHkQg6eX6SASk+Kdq/:2nAQqMSPbcBVQej/JSqTdX1HkQo6SAA
Score10/10-
Contacts a large (2658) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-