Overview

overview

6

Static

static

3

f528df8615...18.exe

windows7-x64

6

f528df8615...18.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f528df8615a5115367b272b5c08ebc20_JaffaCakes118

  • Size

    61KB

  • Sample

    240417-gfg1msfb29

  • MD5

    f528df8615a5115367b272b5c08ebc20

  • SHA1

    27b4fff35d6dc5c2d9740116c5d7a143a86c0d7a

  • SHA256

    8177f9fbca191074fae8b3983913fb242ae902cbc3a27652fcd0104c4d70c3c6

  • SHA512

    d5f37699545529dc6f9b2ff8b7b6b6559c76e09421878b885ae643c502516abaabef6a7cd94a888cbd61eb8f80df21319094b5ba5461b4328fd460aabe8cce05

  • SSDEEP

    1536:Eg9ZqVQPN4UmshsQTpMWTNC1C4TBUgFe47yAVx:EPccklTpMWTN6Xzegyox

Score
6/10
motwphishing

Malware Config

Targets

    • Target

      f528df8615a5115367b272b5c08ebc20_JaffaCakes118

    • Size

      61KB

    • MD5

      f528df8615a5115367b272b5c08ebc20

    • SHA1

      27b4fff35d6dc5c2d9740116c5d7a143a86c0d7a

    • SHA256

      8177f9fbca191074fae8b3983913fb242ae902cbc3a27652fcd0104c4d70c3c6

    • SHA512

      d5f37699545529dc6f9b2ff8b7b6b6559c76e09421878b885ae643c502516abaabef6a7cd94a888cbd61eb8f80df21319094b5ba5461b4328fd460aabe8cce05

    • SSDEEP

      1536:Eg9ZqVQPN4UmshsQTpMWTNC1C4TBUgFe47yAVx:EPccklTpMWTN6Xzegyox

    Score
    6/10
    motwphishing

    • Mark of the Web detected: This indicates that the page was originally saved or cloned.

      phishingmotw

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks