7b9c76c111ca5352c87297376722200a5ff15f643a91565976a5262be4b32bd0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f4f08150a94c6333dc0acbc5cdeea1a5_JaffaCakes118
Size

385KB
Sample

240417-d2f4pace49
MD5

f4f08150a94c6333dc0acbc5cdeea1a5
SHA1

5bfeb461415720da5bf996f9a3270852e1281f4c
SHA256

7b9c76c111ca5352c87297376722200a5ff15f643a91565976a5262be4b32bd0
SHA512

6fe059885e2a657de36f5c9d50847e16c20c240b7e596a778592d107fc923d7c2bf4cd6effb146ff5eef9dc99ba5d15051963d44d557b773c06a806819af4065
SSDEEP

6144:zhF9gUzjmJS43cZYbFtUk+KmWmyzrhbxD/qjBAynSBP8EINFajYRedqQuHuiFTdi:zdb+JZcWrhbJqaMdfs9BApJSnB

Score

7^/10

Malware Config

Targets

- Target
  
  f4f08150a94c6333dc0acbc5cdeea1a5_JaffaCakes118
- Size
  
  385KB
- MD5
  
  f4f08150a94c6333dc0acbc5cdeea1a5
- SHA1
  
  5bfeb461415720da5bf996f9a3270852e1281f4c
- SHA256
  
  7b9c76c111ca5352c87297376722200a5ff15f643a91565976a5262be4b32bd0
- SHA512
  
  6fe059885e2a657de36f5c9d50847e16c20c240b7e596a778592d107fc923d7c2bf4cd6effb146ff5eef9dc99ba5d15051963d44d557b773c06a806819af4065
- SSDEEP
  
  6144:zhF9gUzjmJS43cZYbFtUk+KmWmyzrhbxD/qjBAynSBP8EINFajYRedqQuHuiFTdi:zdb+JZcWrhbJqaMdfs9BApJSnB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2