General
-
Target
b4d6c30783319492a578d333806977be_JaffaCakes118
-
Size
5.0MB
-
Sample
240616-x94dqsthlf
-
MD5
b4d6c30783319492a578d333806977be
-
SHA1
7efe66f619ae1501379dc7cee63c68a07dcafb1c
-
SHA256
645b428bf5a29d365ff98b1fd45ba399c0e00b3da93a8d7cd1e3a0310a3594c3
-
SHA512
ca6ef14ec240115362b4738d23970ee9967665929d6752b8238109dd5f0a90e7766dfedc00c644ad6047c9e3fb970a3b2cc5c5ea1768a5bdb6d20c3d0bbac41e
-
SSDEEP
98304:d8qPoBh3RxcSUDk36SAEdhvxWa9P593R8yAVp2H:d8qPkxcxk3ZAEUadzR8yc4H
Static task
static1
Behavioral task
behavioral1
Sample
b4d6c30783319492a578d333806977be_JaffaCakes118.dll
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
b4d6c30783319492a578d333806977be_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
b4d6c30783319492a578d333806977be_JaffaCakes118
-
Size
5.0MB
-
MD5
b4d6c30783319492a578d333806977be
-
SHA1
7efe66f619ae1501379dc7cee63c68a07dcafb1c
-
SHA256
645b428bf5a29d365ff98b1fd45ba399c0e00b3da93a8d7cd1e3a0310a3594c3
-
SHA512
ca6ef14ec240115362b4738d23970ee9967665929d6752b8238109dd5f0a90e7766dfedc00c644ad6047c9e3fb970a3b2cc5c5ea1768a5bdb6d20c3d0bbac41e
-
SSDEEP
98304:d8qPoBh3RxcSUDk36SAEdhvxWa9P593R8yAVp2H:d8qPkxcxk3ZAEUadzR8yc4H
Score10/10-
Contacts a large (3295) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-