1569004b6312c84ac20c9f9c1e685317d3c108c07323cee71d203e70ad7a539e | Triage

Sharing

General

Target

fa24bed8b05fd25dc64e4e83d462786a_JaffaCakes118
Size

385KB
Sample

240419-mypfbsab7w
MD5

fa24bed8b05fd25dc64e4e83d462786a
SHA1

7efe1b6f18df3ceb96725ad5b970ff43b080b53b
SHA256

1569004b6312c84ac20c9f9c1e685317d3c108c07323cee71d203e70ad7a539e
SHA512

0c1675714d291086d3de6ba1fcaa5977271ee709671b0db7ec0ec416e2dacb9e8af0c63cbcfddc8771e034bd53d322751f577de1b7f9c5b868f8c9f47033fd40
SSDEEP

6144:F4Xvi4W/K22zMkyn0ivgsS9vbNhKe3p9dr2qSpu9cc9OmWbB:y3WNkyn0i4vbr/drWwp9JWbB

Score

7^/10

Malware Config

Targets

- Target
  
  fa24bed8b05fd25dc64e4e83d462786a_JaffaCakes118
- Size
  
  385KB
- MD5
  
  fa24bed8b05fd25dc64e4e83d462786a
- SHA1
  
  7efe1b6f18df3ceb96725ad5b970ff43b080b53b
- SHA256
  
  1569004b6312c84ac20c9f9c1e685317d3c108c07323cee71d203e70ad7a539e
- SHA512
  
  0c1675714d291086d3de6ba1fcaa5977271ee709671b0db7ec0ec416e2dacb9e8af0c63cbcfddc8771e034bd53d322751f577de1b7f9c5b868f8c9f47033fd40
- SSDEEP
  
  6144:F4Xvi4W/K22zMkyn0ivgsS9vbNhKe3p9dr2qSpu9cc9OmWbB:y3WNkyn0i4vbr/drWwp9JWbB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2