7ec1c6a40cf97c6b73745d5c8aa11d24e027315dcd131454b0c1ef6d9aee2b0a | Triage

Sharing

General

Target

f2e1f8698577e9507a4f8c1a8427f0f8_JaffaCakes118
Size

385KB
Sample

240416-g5g2yadb6x
MD5

f2e1f8698577e9507a4f8c1a8427f0f8
SHA1

042ace0826594b36f9d651db0eabed8f39a8ec2f
SHA256

7ec1c6a40cf97c6b73745d5c8aa11d24e027315dcd131454b0c1ef6d9aee2b0a
SHA512

ed1bcb4d0c1d41df100769a20df1fec5d60a4d1dc74fe155d506e1a9773aafe61e20b2268d4c260f2adf08f7d6617863d702b4de31110e588e461a5c6c3e98ef
SSDEEP

6144:CFYrdwTt9CdUMgJmxSKuLOLWQXTCa/yzDPmjYd/HvIUUD4PUcpoGTCq9knXB:CFYr8aUMgJqSKvL+a/wqjYdfA08I05XB

Score

7^/10

Malware Config

Targets

- Target
  
  f2e1f8698577e9507a4f8c1a8427f0f8_JaffaCakes118
- Size
  
  385KB
- MD5
  
  f2e1f8698577e9507a4f8c1a8427f0f8
- SHA1
  
  042ace0826594b36f9d651db0eabed8f39a8ec2f
- SHA256
  
  7ec1c6a40cf97c6b73745d5c8aa11d24e027315dcd131454b0c1ef6d9aee2b0a
- SHA512
  
  ed1bcb4d0c1d41df100769a20df1fec5d60a4d1dc74fe155d506e1a9773aafe61e20b2268d4c260f2adf08f7d6617863d702b4de31110e588e461a5c6c3e98ef
- SSDEEP
  
  6144:CFYrdwTt9CdUMgJmxSKuLOLWQXTCa/yzDPmjYd/HvIUUD4PUcpoGTCq9knXB:CFYr8aUMgJqSKvL+a/wqjYdfA08I05XB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2