02b066cd9893b929b4800ccc868b46f1d947a5121da65969e050d05a5f07d5ee | Triage

Sharing

General

Target

e854b812fea6562ce7c9b896ee8bedee_JaffaCakes118
Size

385KB
Sample

240408-y5pkfsah29
MD5

e854b812fea6562ce7c9b896ee8bedee
SHA1

f54fbc97f038c336f15b10277865b62d87b7f976
SHA256

02b066cd9893b929b4800ccc868b46f1d947a5121da65969e050d05a5f07d5ee
SHA512

32a0c0c94febbf8f1b317e7e028070dd879bcfe3f0594eb55116a822ea9be816dd841af6551135ec3813341f8856b5b8b0d5289466e7da33f47393e96c3e8f97
SSDEEP

12288:lyWcH5hxmYXxmw+LkS7d2ghKxHeEjqQ1bFB:ly3ZhxnXxmHQS7A8KxHjqeFB

Score

7^/10

Malware Config

Targets

- Target
  
  e854b812fea6562ce7c9b896ee8bedee_JaffaCakes118
- Size
  
  385KB
- MD5
  
  e854b812fea6562ce7c9b896ee8bedee
- SHA1
  
  f54fbc97f038c336f15b10277865b62d87b7f976
- SHA256
  
  02b066cd9893b929b4800ccc868b46f1d947a5121da65969e050d05a5f07d5ee
- SHA512
  
  32a0c0c94febbf8f1b317e7e028070dd879bcfe3f0594eb55116a822ea9be816dd841af6551135ec3813341f8856b5b8b0d5289466e7da33f47393e96c3e8f97
- SSDEEP
  
  12288:lyWcH5hxmYXxmw+LkS7d2ghKxHeEjqQ1bFB:ly3ZhxnXxmHQS7A8KxHjqeFB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2