General
-
Target
baf619c98be41c1671525ea9a38f7b99_JaffaCakes118
-
Size
5.0MB
-
Sample
240618-k68g3a1djl
-
MD5
baf619c98be41c1671525ea9a38f7b99
-
SHA1
4c953ea1cfd85ca9b90ef38a8dd23c1b12384875
-
SHA256
d3da6ee3efab95de2a8f083ffc999c54408e9afdddd8d319765ecf853d41d91a
-
SHA512
023baee979a8961295935096f1dcbbb4bbb8e662abca7af318d7809168cec5d674e42428b22f6172eb9064600b9a2fac0e5a1241fc06964af49a4a5e7dabaea2
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SA:+DqPoBhz1aRxcSUDk36SA
Static task
static1
Behavioral task
behavioral1
Sample
baf619c98be41c1671525ea9a38f7b99_JaffaCakes118.dll
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
baf619c98be41c1671525ea9a38f7b99_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
baf619c98be41c1671525ea9a38f7b99_JaffaCakes118
-
Size
5.0MB
-
MD5
baf619c98be41c1671525ea9a38f7b99
-
SHA1
4c953ea1cfd85ca9b90ef38a8dd23c1b12384875
-
SHA256
d3da6ee3efab95de2a8f083ffc999c54408e9afdddd8d319765ecf853d41d91a
-
SHA512
023baee979a8961295935096f1dcbbb4bbb8e662abca7af318d7809168cec5d674e42428b22f6172eb9064600b9a2fac0e5a1241fc06964af49a4a5e7dabaea2
-
SSDEEP
49152:SnAQqMSPbcBVQej/1INRx+TSqTdX1HkQo6SA:+DqPoBhz1aRxcSUDk36SA
Score10/10-
Contacts a large (3216) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-