23b39ae67c5ca76dc27cfe4d8c7f4f167be66d598e7c017782960c09eb9d93c8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fdeccc9e65bd67edb6b0510eb15767ad_JaffaCakes118
Size

128KB
Sample

240420-3prgbsdb29
MD5

fdeccc9e65bd67edb6b0510eb15767ad
SHA1

66ac4d2656d9267fcffb242ab8488f7758a896ff
SHA256

23b39ae67c5ca76dc27cfe4d8c7f4f167be66d598e7c017782960c09eb9d93c8
SHA512

e238f08cb75188ae13b20239e1c4a8524b5766645c2db7bf169b9654f391790fa6660537ac2bf2736be8220b98e0be097c2adf95804bea006cc89bc8d17509d6
SSDEEP

3072:NyPEijZeqLVEijZeqLczFRMi/2lO70vifQoqsw/6B1R4XGHULpcSuxw0sVAxxNzT:NyPEijZeqLVEijZeqLcfMi/2lO70vifn

Score

6^/10

Malware Config

Targets

- Target
  
  fdeccc9e65bd67edb6b0510eb15767ad_JaffaCakes118
- Size
  
  128KB
- MD5
  
  fdeccc9e65bd67edb6b0510eb15767ad
- SHA1
  
  66ac4d2656d9267fcffb242ab8488f7758a896ff
- SHA256
  
  23b39ae67c5ca76dc27cfe4d8c7f4f167be66d598e7c017782960c09eb9d93c8
- SHA512
  
  e238f08cb75188ae13b20239e1c4a8524b5766645c2db7bf169b9654f391790fa6660537ac2bf2736be8220b98e0be097c2adf95804bea006cc89bc8d17509d6
- SSDEEP
  
  3072:NyPEijZeqLVEijZeqLczFRMi/2lO70vifQoqsw/6B1R4XGHULpcSuxw0sVAxxNzT:NyPEijZeqLVEijZeqLcfMi/2lO70vifn
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2