General
-
Target
b325f5b31f894f5c5292d7dafc95e563_JaffaCakes118
-
Size
5.0MB
-
Sample
240616-m19jaavblp
-
MD5
b325f5b31f894f5c5292d7dafc95e563
-
SHA1
817d98c51fb829f295b5524beddef41ae7bcbcbd
-
SHA256
fe1e65b62cd7d316362f47bf5edb24f97c791ebc391011e221df8b8ebef7016a
-
SHA512
4642b86eff510a8effba55fac1b4cefbb4d03afc2334169ab2c5563ccbb44444315d2429cc33608afe7523968456447278502b42dc731dad0347c432adfeb8b9
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAAfSIfb:+DqPoBhz1aRxcSUDk36SAyB
Static task
static1
Behavioral task
behavioral1
Sample
b325f5b31f894f5c5292d7dafc95e563_JaffaCakes118.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
b325f5b31f894f5c5292d7dafc95e563_JaffaCakes118.dll
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
b325f5b31f894f5c5292d7dafc95e563_JaffaCakes118
-
Size
5.0MB
-
MD5
b325f5b31f894f5c5292d7dafc95e563
-
SHA1
817d98c51fb829f295b5524beddef41ae7bcbcbd
-
SHA256
fe1e65b62cd7d316362f47bf5edb24f97c791ebc391011e221df8b8ebef7016a
-
SHA512
4642b86eff510a8effba55fac1b4cefbb4d03afc2334169ab2c5563ccbb44444315d2429cc33608afe7523968456447278502b42dc731dad0347c432adfeb8b9
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAAfSIfb:+DqPoBhz1aRxcSUDk36SAyB
Score10/10-
Contacts a large (2658) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-