General
-
Target
b4e3972bb8d4603c813baa1a2b9bf8d6_JaffaCakes118
-
Size
5.0MB
-
Sample
240616-ygys8avckf
-
MD5
b4e3972bb8d4603c813baa1a2b9bf8d6
-
SHA1
e23d14c0779f3d4aef49e1b102acb33d33093c12
-
SHA256
7e32f840a2517ec58b26eead64d4c0ccf4e2baa4eafb567c154eb79946e56a8f
-
SHA512
787e1cbc684a15cac118d0222340be92a8dcad3f3ba12b4ab3596ba8b1c00010911aaf52c2f5c73319ca02e4c967660abab0ac124f0c36d93ac008b99159bcca
-
SSDEEP
98304:MDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2e3:MDqPe1Cxcxk3ZAEUadzR8yc4e
Static task
static1
Behavioral task
behavioral1
Sample
b4e3972bb8d4603c813baa1a2b9bf8d6_JaffaCakes118.dll
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
b4e3972bb8d4603c813baa1a2b9bf8d6_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
b4e3972bb8d4603c813baa1a2b9bf8d6_JaffaCakes118
-
Size
5.0MB
-
MD5
b4e3972bb8d4603c813baa1a2b9bf8d6
-
SHA1
e23d14c0779f3d4aef49e1b102acb33d33093c12
-
SHA256
7e32f840a2517ec58b26eead64d4c0ccf4e2baa4eafb567c154eb79946e56a8f
-
SHA512
787e1cbc684a15cac118d0222340be92a8dcad3f3ba12b4ab3596ba8b1c00010911aaf52c2f5c73319ca02e4c967660abab0ac124f0c36d93ac008b99159bcca
-
SSDEEP
98304:MDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2e3:MDqPe1Cxcxk3ZAEUadzR8yc4e
Score10/10-
Contacts a large (2693) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Modifies file permissions
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-