General

  • Target

    8aedf2cd364f3507e91bd06a08c9eb7d_JaffaCakes118

  • Size

    123KB

  • Sample

    240402-nagagsga8s

  • MD5

    8aedf2cd364f3507e91bd06a08c9eb7d

  • SHA1

    ba4b436f571482fc18bc1171574df39638dda744

  • SHA256

    e416e7034d0953ccc58845fe11d7e248de2a79afeac4999e887aa29e1a7815c1

  • SHA512

    9f985d094132f58e125324b14f7726c8df14f4c0afe3ca47e310c02d04fb5d2532906a51ba751c9416ccd67d7b2d1cbd1d50470431ec9cb08362f0a9ea6f4864

  • SSDEEP

    1536:M7je1TMGq+f+AQ2rK7zeXeReXe8V2rK7Ie+u60GAzQj1l72HBemEdWfRZrmW+IFj:Ted0W0MZQHgd6RZrmW+IFB1Dt1hR/

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

50.115.174.119:606

Targets

    • Target

      8aedf2cd364f3507e91bd06a08c9eb7d_JaffaCakes118

    • Size

      123KB

    • MD5

      8aedf2cd364f3507e91bd06a08c9eb7d

    • SHA1

      ba4b436f571482fc18bc1171574df39638dda744

    • SHA256

      e416e7034d0953ccc58845fe11d7e248de2a79afeac4999e887aa29e1a7815c1

    • SHA512

      9f985d094132f58e125324b14f7726c8df14f4c0afe3ca47e310c02d04fb5d2532906a51ba751c9416ccd67d7b2d1cbd1d50470431ec9cb08362f0a9ea6f4864

    • SSDEEP

      1536:M7je1TMGq+f+AQ2rK7zeXeReXe8V2rK7Ie+u60GAzQj1l72HBemEdWfRZrmW+IFj:Ted0W0MZQHgd6RZrmW+IFB1Dt1hR/

    Score
    6/10
    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks