c04518e2e84be6b3329fda9631f164ce8db2141ddfbbd6587201d85023377b01 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f63e71059c44299a2c93e14cb1a1624b_JaffaCakes118
Size

9.8MB
Sample

240417-vf4fjaga44
MD5

f63e71059c44299a2c93e14cb1a1624b
SHA1

5ebd4511a27cd95e74e4136bfaa3948e29118935
SHA256

c04518e2e84be6b3329fda9631f164ce8db2141ddfbbd6587201d85023377b01
SHA512

1e1e32a541568988888c9e5648887b863e674c02149fe786cbd0f7d92beeb8402aeb5059cb94300ee1e497b4ed6d1476b15b3f09e541ce5a34ffe27a3ddf59e4
SSDEEP

196608:2Aq18ETTY6lH7SRkw2WEpixymQ06FPMQC81dsbF3Y:2318h65oxdEDmQ0kkQC+dsbFo

Score

7^/10

Malware Config

Targets

- Target
  
  client.exe
- Size
  
  9.7MB
- MD5
  
  7297f5ef05c4cee7c25782a0519ad33e
- SHA1
  
  734af6767d65d0dfcacf81ea4843ecdeb4b9a9ca
- SHA256
  
  40a7a7c8dfbc2008658536ec416815fa7c31e64ce05ff66e9a11550411a67475
- SHA512
  
  cae1c1e57c4272a74d7d25ed89ca68588efff6c935999c805d9e49cec0eb5ca388942c9b6cdd738998688256aac33aa5f52a224f0721e64f2547ee20969e752b
- SSDEEP
  
  196608:je3IJ3pD+ENY9QKUjDQWTpQHYfLz0fJRjMFvmXK/Q6jxoiO:j7/DLAQDDTSH4879LiO
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  server.exe
- Size
  
  1007KB
- MD5
  
  9128d2e2c38c58a0dcbd9ffbec6d33fe
- SHA1
  
  551808b0aa81428161dfb43672f192d4989c979b
- SHA256
  
  3532f7a5c8fab069331da42059f4ec3d3800fbffa73db8cd098ce4a1acad5b16
- SHA512
  
  a4b641adbf1cd372acdc3723f12374676260c3b6f8de30813d6931a5633db5f79080fb15f1463941b6fa23ebe19af335e6f395fc516caf134f047b117d8589b9
- SSDEEP
  
  24576:cpnilMEwyge7j0JV1ih9MconwHU5Wj7dPa57qhpG3sa3kY2+mO85:yiSdNev9aOdPa0h0313O+mOm
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4