Overview

overview

6

Static

static

1

03bfab4103...8.html

windows7-x64

6

03bfab4103...8.html

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    03bfab4103867cfecaf0a3d8072985dd_JaffaCakes118

  • Size

    54KB

  • Sample

    240427-1643mshg27

  • MD5

    03bfab4103867cfecaf0a3d8072985dd

  • SHA1

    0acc09116fca08ad57c420ec5a80f1858fb7ec62

  • SHA256

    e0feecc3b53dcc7e762e5398cd930250241e049b75ca46306acee0fcefb87be4

  • SHA512

    c3bd82c16198a1f33d4a46e29f314610f111c7ac85f33a30554144db047a751b2555f70f26f5586d5905745c28167cb45eb110043b9fde56984c2dea8380a03d

  • SSDEEP

    1536:YBKqUU0EeyGKgQiX3jf5wep1AF20rDZaMkvww26rGrg:YBK+0+2X3dweAFZD02E9

Score
6/10

Malware Config

Targets

    • Target

      03bfab4103867cfecaf0a3d8072985dd_JaffaCakes118

    • Size

      54KB

    • MD5

      03bfab4103867cfecaf0a3d8072985dd

    • SHA1

      0acc09116fca08ad57c420ec5a80f1858fb7ec62

    • SHA256

      e0feecc3b53dcc7e762e5398cd930250241e049b75ca46306acee0fcefb87be4

    • SHA512

      c3bd82c16198a1f33d4a46e29f314610f111c7ac85f33a30554144db047a751b2555f70f26f5586d5905745c28167cb45eb110043b9fde56984c2dea8380a03d

    • SSDEEP

      1536:YBKqUU0EeyGKgQiX3jf5wep1AF20rDZaMkvww26rGrg:YBK+0+2X3dweAFZD02E9

    Score
    6/10

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks