800e43fa0f2d6d26babcabc4662af4852ab109c5a6dff407a8a03b557c4180f3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f7776b25b1aaa9cbd5e1f8eb3eb3a22b_JaffaCakes118
Size

385KB
Sample

240418-hc4kxafb3t
MD5

f7776b25b1aaa9cbd5e1f8eb3eb3a22b
SHA1

04967fa74b696d77525a016c38e1a02ef1bde946
SHA256

800e43fa0f2d6d26babcabc4662af4852ab109c5a6dff407a8a03b557c4180f3
SHA512

7813b199c89bb989411b218c64c8b2828acc7ec498ac0307cb21a75bd882f0e301e44887085482466eda6dd9f35d70ad93ee8cba9fa35d6848be24ca13d15574
SSDEEP

6144:5AIugPXzaFY4ZFy7X0mKCKirQLkifuKxbdffxBWbCMsYQmsCP9H8alB:yAPXay7EmfPQwi/nB9YQm9Ph8kB

Score

7^/10

Malware Config

Targets

- Target
  
  f7776b25b1aaa9cbd5e1f8eb3eb3a22b_JaffaCakes118
- Size
  
  385KB
- MD5
  
  f7776b25b1aaa9cbd5e1f8eb3eb3a22b
- SHA1
  
  04967fa74b696d77525a016c38e1a02ef1bde946
- SHA256
  
  800e43fa0f2d6d26babcabc4662af4852ab109c5a6dff407a8a03b557c4180f3
- SHA512
  
  7813b199c89bb989411b218c64c8b2828acc7ec498ac0307cb21a75bd882f0e301e44887085482466eda6dd9f35d70ad93ee8cba9fa35d6848be24ca13d15574
- SSDEEP
  
  6144:5AIugPXzaFY4ZFy7X0mKCKirQLkifuKxbdffxBWbCMsYQmsCP9H8alB:yAPXay7EmfPQwi/nB9YQm9Ph8kB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2