457c8cb330efbb8a462697c96f275f7231b677cd6c97a466563511b25821e048 | Triage

Sharing

General

Target

ec772e3d12c03a490481f8683905703d_JaffaCakes118
Size

385KB
Sample

240411-cqs4fach4y
MD5

ec772e3d12c03a490481f8683905703d
SHA1

b2c54cff054eaa0b4735609d02a7e4d168fb4385
SHA256

457c8cb330efbb8a462697c96f275f7231b677cd6c97a466563511b25821e048
SHA512

d10190f632b1bd36b2970bd5a54ea569d3f3f67d5852fbaff12c26a15720806d38fefb0ce2d79faff873f07951794d50d1458119f765a72e83f3502ef1918e39
SSDEEP

12288:hDiMoUppJ0lgNy2ro4cFC63XEKHuni/7B:BgUnJhk2KFCwEKHuiTB

Score

7^/10

Malware Config

Targets

- Target
  
  ec772e3d12c03a490481f8683905703d_JaffaCakes118
- Size
  
  385KB
- MD5
  
  ec772e3d12c03a490481f8683905703d
- SHA1
  
  b2c54cff054eaa0b4735609d02a7e4d168fb4385
- SHA256
  
  457c8cb330efbb8a462697c96f275f7231b677cd6c97a466563511b25821e048
- SHA512
  
  d10190f632b1bd36b2970bd5a54ea569d3f3f67d5852fbaff12c26a15720806d38fefb0ce2d79faff873f07951794d50d1458119f765a72e83f3502ef1918e39
- SSDEEP
  
  12288:hDiMoUppJ0lgNy2ro4cFC63XEKHuni/7B:BgUnJhk2KFCwEKHuiTB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2