General

  • Target

    226c0e0ac5c3b64c204c3033c05432b4_JaffaCakes118

  • Size

    94KB

  • Sample

    240329-p2l6gshf77

  • MD5

    226c0e0ac5c3b64c204c3033c05432b4

  • SHA1

    54cecd461b92cfaa859586909684c489f9fbcb02

  • SHA256

    7cd86bec72e0edeef13a5d3ce61fe190dfb86e0a9e561e1c1c584fe595866575

  • SHA512

    3b9f052eb80018f06e52f14c88de39fe515e2f94e0732a8949525a0cff7e292a29d0207a83a7092a91809b5fd3c4e52560f91da31a00437ad1ede069627a7ea0

  • SSDEEP

    1536:ZvgGLI1gX3JGQxPuwjxtOZyO5hXNKV6T/Fo2kjvVqQEqn/lJXCPe:tIHQjjK5hXNKV6T/cjvVqQEqn9JXCPe

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

176.123.4.144:4258

Targets

    • Target

      226c0e0ac5c3b64c204c3033c05432b4_JaffaCakes118

    • Size

      94KB

    • MD5

      226c0e0ac5c3b64c204c3033c05432b4

    • SHA1

      54cecd461b92cfaa859586909684c489f9fbcb02

    • SHA256

      7cd86bec72e0edeef13a5d3ce61fe190dfb86e0a9e561e1c1c584fe595866575

    • SHA512

      3b9f052eb80018f06e52f14c88de39fe515e2f94e0732a8949525a0cff7e292a29d0207a83a7092a91809b5fd3c4e52560f91da31a00437ad1ede069627a7ea0

    • SSDEEP

      1536:ZvgGLI1gX3JGQxPuwjxtOZyO5hXNKV6T/Fo2kjvVqQEqn/lJXCPe:tIHQjjK5hXNKV6T/cjvVqQEqn9JXCPe

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks