b56d6a73f712ee3dbcf1d1004a08cc90fdd3d8175e43de45eacc0646586e20e9 | Triage

Sharing

General

Target

f77355e43af3d2befc6b5134915d6384_JaffaCakes118
Size

385KB
Sample

240418-g67c8aeh9x
MD5

f77355e43af3d2befc6b5134915d6384
SHA1

c1014f30eb1de3dd64ef356b65ef18f6a29b8e0a
SHA256

b56d6a73f712ee3dbcf1d1004a08cc90fdd3d8175e43de45eacc0646586e20e9
SHA512

f19cba4cc729bf7934e9e4c5970a708e9cdfa818453afcedfe7f9f12d5eb04e2aa3c77f2e16a958bbfa29566af927166af7a31c849baa0b0a88e97892a11286e
SSDEEP

6144:+Q5CFr+OeSnhhxb1fatWMzJSN+DQ+hlVWx6lRvTRDlKr/3F8mFyQV8k0NmHkNq+B:NCFrmShhpUWSK+DQDIlRGT18DmENq+B

Score

7^/10

Malware Config

Targets

- Target
  
  f77355e43af3d2befc6b5134915d6384_JaffaCakes118
- Size
  
  385KB
- MD5
  
  f77355e43af3d2befc6b5134915d6384
- SHA1
  
  c1014f30eb1de3dd64ef356b65ef18f6a29b8e0a
- SHA256
  
  b56d6a73f712ee3dbcf1d1004a08cc90fdd3d8175e43de45eacc0646586e20e9
- SHA512
  
  f19cba4cc729bf7934e9e4c5970a708e9cdfa818453afcedfe7f9f12d5eb04e2aa3c77f2e16a958bbfa29566af927166af7a31c849baa0b0a88e97892a11286e
- SSDEEP
  
  6144:+Q5CFr+OeSnhhxb1fatWMzJSN+DQ+hlVWx6lRvTRDlKr/3F8mFyQV8k0NmHkNq+B:NCFrmShhpUWSK+DQDIlRGT18DmENq+B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2