General
-
Target
ae21b6f5956755d9f9ac2fbc72ced294_JaffaCakes118
-
Size
3.6MB
-
Sample
240615-m8jb3asark
-
MD5
ae21b6f5956755d9f9ac2fbc72ced294
-
SHA1
5ec07870be0a5c3fe1940464d8710f44f75141ee
-
SHA256
230858b67d4a306017342b47310c447d9eb5a02e6284b39b3603ab31b7a65966
-
SHA512
eb90d26a1e29d5b12bac54a09c47f630b29ec39d66b14f1fe5e191453be4fcd9e438e6b7a1b1e3378a28a1b4d7f6ff6489acfcc3c0a1cbb7cfeee456a0090b97
-
SSDEEP
49152:2nAQqMyoueyYXIUeUNPLiD0iC7L1JXTXeVAMgBt3:yDq6TD31Nhj3
Static task
static1
Behavioral task
behavioral1
Sample
ae21b6f5956755d9f9ac2fbc72ced294_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
ae21b6f5956755d9f9ac2fbc72ced294_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
ae21b6f5956755d9f9ac2fbc72ced294_JaffaCakes118
-
Size
3.6MB
-
MD5
ae21b6f5956755d9f9ac2fbc72ced294
-
SHA1
5ec07870be0a5c3fe1940464d8710f44f75141ee
-
SHA256
230858b67d4a306017342b47310c447d9eb5a02e6284b39b3603ab31b7a65966
-
SHA512
eb90d26a1e29d5b12bac54a09c47f630b29ec39d66b14f1fe5e191453be4fcd9e438e6b7a1b1e3378a28a1b4d7f6ff6489acfcc3c0a1cbb7cfeee456a0090b97
-
SSDEEP
49152:2nAQqMyoueyYXIUeUNPLiD0iC7L1JXTXeVAMgBt3:yDq6TD31Nhj3
Score10/10-
Contacts a large (3217) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-