3932ba7c9d1d82011c189f559f348ce9155775b68e97bd7eaaad90c8513b2099 | Triage

Sharing

General

Target

f91b809418deabf5412255309ab31e82_JaffaCakes118
Size

385KB
Sample

240419-awcbrsbc89
MD5

f91b809418deabf5412255309ab31e82
SHA1

9a9f0ae11a12dd83affa4c21ad651be044e0f8d6
SHA256

3932ba7c9d1d82011c189f559f348ce9155775b68e97bd7eaaad90c8513b2099
SHA512

45a38edf47c2dd63d24d0a281428e2ed17846ef70d1aa23b05d0484d5355d8453b3b876ffb249b19e8b62b7b4c024247f1dbeba928cba2abf2c3f70883dea9a4
SSDEEP

6144:c0YF+E5esGLlccWWhY+3Ze0NglMHkkHuj4a10A+ZiNbhd8Vco1jDFDDZcyNvljXF:c0YF6smqcWWE6hHtHuj4SEZp9jJjbB

Score

7^/10

Malware Config

Targets

- Target
  
  f91b809418deabf5412255309ab31e82_JaffaCakes118
- Size
  
  385KB
- MD5
  
  f91b809418deabf5412255309ab31e82
- SHA1
  
  9a9f0ae11a12dd83affa4c21ad651be044e0f8d6
- SHA256
  
  3932ba7c9d1d82011c189f559f348ce9155775b68e97bd7eaaad90c8513b2099
- SHA512
  
  45a38edf47c2dd63d24d0a281428e2ed17846ef70d1aa23b05d0484d5355d8453b3b876ffb249b19e8b62b7b4c024247f1dbeba928cba2abf2c3f70883dea9a4
- SSDEEP
  
  6144:c0YF+E5esGLlccWWhY+3Ze0NglMHkkHuj4a10A+ZiNbhd8Vco1jDFDDZcyNvljXF:c0YF6smqcWWE6hHtHuj4SEZp9jJjbB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2