be95982f224527fcf8f1d983a89aab5e75e420665851dc3d6de9326b59f5686e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e826f60975acc47db7315f497ecdf764_JaffaCakes118
Size

385KB
Sample

240408-xc88qabg21
MD5

e826f60975acc47db7315f497ecdf764
SHA1

9075ff0303a78ea28b84c49befb3b7cd7fcd2d07
SHA256

be95982f224527fcf8f1d983a89aab5e75e420665851dc3d6de9326b59f5686e
SHA512

49e19511864118aef647233f4cc13e7ec5259d135ea76de21b47d88e8ba812d32648a671780108bb7bdf5f75ccad7cc267400e8ced064e547aeddfb26a604e2d
SSDEEP

6144:7K9vEppIou/c4DPn0vO7dooJKEUcbLkar09p/hT8/lJqiNKfB:7K9vYI6wPn0vsoK1109jTiOB

Score

7^/10

Malware Config

Targets

- Target
  
  e826f60975acc47db7315f497ecdf764_JaffaCakes118
- Size
  
  385KB
- MD5
  
  e826f60975acc47db7315f497ecdf764
- SHA1
  
  9075ff0303a78ea28b84c49befb3b7cd7fcd2d07
- SHA256
  
  be95982f224527fcf8f1d983a89aab5e75e420665851dc3d6de9326b59f5686e
- SHA512
  
  49e19511864118aef647233f4cc13e7ec5259d135ea76de21b47d88e8ba812d32648a671780108bb7bdf5f75ccad7cc267400e8ced064e547aeddfb26a604e2d
- SSDEEP
  
  6144:7K9vEppIou/c4DPn0vO7dooJKEUcbLkar09p/hT8/lJqiNKfB:7K9vYI6wPn0vsoK1109jTiOB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2