b2ffee4899f3360de69ba8bcd7d5429e8590b8a57b00952545904de0c05309a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e92c7f189f5569e132e1bdf9d536f630_JaffaCakes118
Size

771KB
Sample

240409-eky4lshe5w
MD5

e92c7f189f5569e132e1bdf9d536f630
SHA1

fc60e5ebdb290ef96494027fca0e43aea2633dc5
SHA256

b2ffee4899f3360de69ba8bcd7d5429e8590b8a57b00952545904de0c05309a7
SHA512

e71da47cbff68b41a21dcba32d04583fe1ca6338b034126888402f5b760a87a14102c0bff3d85bd3dc4bc57e3ddee7d129ebee8c65aab6f19b586676ba42ece2
SSDEEP

24576:rsomsOAOcm2qCs1yb10hJaothZ2/T6FBBB:rsomsjOcYCs1E/ofT

Score

7^/10

Malware Config

Targets

- Target
  
  e92c7f189f5569e132e1bdf9d536f630_JaffaCakes118
- Size
  
  771KB
- MD5
  
  e92c7f189f5569e132e1bdf9d536f630
- SHA1
  
  fc60e5ebdb290ef96494027fca0e43aea2633dc5
- SHA256
  
  b2ffee4899f3360de69ba8bcd7d5429e8590b8a57b00952545904de0c05309a7
- SHA512
  
  e71da47cbff68b41a21dcba32d04583fe1ca6338b034126888402f5b760a87a14102c0bff3d85bd3dc4bc57e3ddee7d129ebee8c65aab6f19b586676ba42ece2
- SSDEEP
  
  24576:rsomsOAOcm2qCs1yb10hJaothZ2/T6FBBB:rsomsjOcYCs1E/ofT
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2