5036ae53a14e354c8d3dc4b05336446ad68380e5f1acacb5b8a14442dc9923c6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f103b35f9ac475465dca4506d6f0a0cc_JaffaCakes118
Size

385KB
Sample

240415-n9bjaaea47
MD5

f103b35f9ac475465dca4506d6f0a0cc
SHA1

5707a63eff1330dc4c0801dd1c748990ea2d971a
SHA256

5036ae53a14e354c8d3dc4b05336446ad68380e5f1acacb5b8a14442dc9923c6
SHA512

79eed51f85c5b1254cc89e937d4fac076fb597597910bc2e3c107cdb30b0fcf8318499b1c3589610efcbd230ac32385c7ca929b7d6466a3b8b916c49b6ec6a89
SSDEEP

6144:u/k5O9LdrAQ6HAp6jAxIuCwPQcHKdZ4LkEcEvgX3fau6dPtB:u/EO9xUQoA9I/KtAEMP0dPtB

Score

7^/10

Malware Config

Targets

- Target
  
  f103b35f9ac475465dca4506d6f0a0cc_JaffaCakes118
- Size
  
  385KB
- MD5
  
  f103b35f9ac475465dca4506d6f0a0cc
- SHA1
  
  5707a63eff1330dc4c0801dd1c748990ea2d971a
- SHA256
  
  5036ae53a14e354c8d3dc4b05336446ad68380e5f1acacb5b8a14442dc9923c6
- SHA512
  
  79eed51f85c5b1254cc89e937d4fac076fb597597910bc2e3c107cdb30b0fcf8318499b1c3589610efcbd230ac32385c7ca929b7d6466a3b8b916c49b6ec6a89
- SSDEEP
  
  6144:u/k5O9LdrAQ6HAp6jAxIuCwPQcHKdZ4LkEcEvgX3fau6dPtB:u/EO9xUQoA9I/KtAEMP0dPtB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2