b0ab4c5e065ecd1bf390f5bccdae601069d783aa6f24e51e436bcadbf7abfa18 | Triage

Sharing

General

Target

f16ff1e311abbcc0caed02d472ecb703_JaffaCakes118
Size

385KB
Sample

240415-tdzh5ace8s
MD5

f16ff1e311abbcc0caed02d472ecb703
SHA1

00789d9ea13b960f37b16dab90d0001c6057c9fe
SHA256

b0ab4c5e065ecd1bf390f5bccdae601069d783aa6f24e51e436bcadbf7abfa18
SHA512

ef7f5c65d0acb8c3b1fdfafd564519dfbf8881904bf85186f840409071ba7d9246c22384555d338114b666d8b03eeb104e6e57e207bc16db794aadf3c1d70c0f
SSDEEP

6144:I1/h7Hgh+H/ESj0TY8sEMmp9A258vy6gQEp5CeMjb2PrmyBWi4X++pvHhSjgB:I1/G+H/ES7lpc7un/eMjbOrm5hw8B

Score

7^/10

Malware Config

Targets

- Target
  
  f16ff1e311abbcc0caed02d472ecb703_JaffaCakes118
- Size
  
  385KB
- MD5
  
  f16ff1e311abbcc0caed02d472ecb703
- SHA1
  
  00789d9ea13b960f37b16dab90d0001c6057c9fe
- SHA256
  
  b0ab4c5e065ecd1bf390f5bccdae601069d783aa6f24e51e436bcadbf7abfa18
- SHA512
  
  ef7f5c65d0acb8c3b1fdfafd564519dfbf8881904bf85186f840409071ba7d9246c22384555d338114b666d8b03eeb104e6e57e207bc16db794aadf3c1d70c0f
- SSDEEP
  
  6144:I1/h7Hgh+H/ESj0TY8sEMmp9A258vy6gQEp5CeMjb2PrmyBWi4X++pvHhSjgB:I1/G+H/ES7lpc7un/eMjbOrm5hw8B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2