General
-
Target
bcb50111e327eeacaef83c4e5ffd0e1b_JaffaCakes118
-
Size
3.0MB
-
Sample
240618-s3wcbszdja
-
MD5
bcb50111e327eeacaef83c4e5ffd0e1b
-
SHA1
49dbaba567f922732c70449bac332cd7d4087f89
-
SHA256
5d8e50ac7f45ba7f2463f0505064110e8e2b443ea58d147a60e89a29cb66d630
-
SHA512
51c2cc03bd128ca0438feae590c60dd7d7af4a3c27bba63be756cef7b1cfb5adcc4ed4e34a93b4f36838e97ffcb9b379482ce40da68aaa9b882835366539615d
-
SSDEEP
98304:DfLFfsB59dt6AeAtn9NWgTB7BjvGm0/vKJH:DTxsLtleAogllvGmEyJH
Static task
static1
Behavioral task
behavioral1
Sample
4ff7ab7be09dbf4fdcd86c1fdda6382a.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
4ff7ab7be09dbf4fdcd86c1fdda6382a.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
4ff7ab7be09dbf4fdcd86c1fdda6382a.vir
-
Size
5.0MB
-
MD5
4ff7ab7be09dbf4fdcd86c1fdda6382a
-
SHA1
ed94e456f899ab6d41a688c2738d7290c81ae66b
-
SHA256
340a987284bda2834a8e85be466250f5dbdf43a211049d1c6e27da52cb5fd060
-
SHA512
6d7cc8f4864f5d6a9aa73fc2763b2c516879d5b9d6b8a3a3a4872431fd5e12ec9960300514a43bedbac6461a5267f6abb5e4134f69423e50e9ed263ce31466e3
-
SSDEEP
98304:TDqPoBhzO6SAEdhvxWa9P593R8yAVp2H:TDqPeOZAEUadzR8yc4H
Score10/10-
Contacts a large (2662) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Drops file in System32 directory
-