General
-
Target
b48f982c64375c10fc168deae12e70ac_JaffaCakes118
-
Size
5.0MB
-
Sample
240616-w3ma7swbmk
-
MD5
b48f982c64375c10fc168deae12e70ac
-
SHA1
a23c607e573be5efe3d2001caec3304cdf8bd3dc
-
SHA256
e919919b0615fcd5e7c878c08b0e98ef46730a5b5bb8cbf5661efb16f8a3ad01
-
SHA512
8aa653cf40aaf9b08d88ed76a946bc29a3ecc67bf264e9077b05e8a9459117a18bc3c54aaed72911ff8281eb028f90e3f75de6f6b01e77768b7136e771133626
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAMhnvxJM0H9PAME:+DqPoBhz1aRxcSUDk36SAMhvxWa9P5
Static task
static1
Behavioral task
behavioral1
Sample
b48f982c64375c10fc168deae12e70ac_JaffaCakes118.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
b48f982c64375c10fc168deae12e70ac_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
b48f982c64375c10fc168deae12e70ac_JaffaCakes118
-
Size
5.0MB
-
MD5
b48f982c64375c10fc168deae12e70ac
-
SHA1
a23c607e573be5efe3d2001caec3304cdf8bd3dc
-
SHA256
e919919b0615fcd5e7c878c08b0e98ef46730a5b5bb8cbf5661efb16f8a3ad01
-
SHA512
8aa653cf40aaf9b08d88ed76a946bc29a3ecc67bf264e9077b05e8a9459117a18bc3c54aaed72911ff8281eb028f90e3f75de6f6b01e77768b7136e771133626
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAMhnvxJM0H9PAME:+DqPoBhz1aRxcSUDk36SAMhvxWa9P5
Score10/10-
Contacts a large (2660) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-