Overview

overview

7

Static

static

3

fceb7dd8c6...18.exe

windows7-x64

7

fceb7dd8c6...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fceb7dd8c689393582389866208cf6fe_JaffaCakes118

  • Size

    8KB

  • Sample

    240420-rarb8sab93

  • MD5

    fceb7dd8c689393582389866208cf6fe

  • SHA1

    79cdea8594ca6d58161e008b22aae5f0c149e94d

  • SHA256

    16cfebf8c1f9127a2e0ef078f279973d8ab408af9d0e99f7c6f9a07f1e728239

  • SHA512

    01388fae7fe75d77dc7e3cc03aa7a09cb04164d65a4ef7ffe561c7587c42f62c7f5a8eaeaebf16f6d422fef39a6171322cbd819b04e45afd701928c8f02c9fef

  • SSDEEP

    192:ybjmJpxbq1ecenPiyCLGHbjmJzXYWu8+M:ybyPxTXPiypHbytX/

Score
7/10
microsoftphishing

Malware Config

Targets

    • Target

      fceb7dd8c689393582389866208cf6fe_JaffaCakes118

    • Size

      8KB

    • MD5

      fceb7dd8c689393582389866208cf6fe

    • SHA1

      79cdea8594ca6d58161e008b22aae5f0c149e94d

    • SHA256

      16cfebf8c1f9127a2e0ef078f279973d8ab408af9d0e99f7c6f9a07f1e728239

    • SHA512

      01388fae7fe75d77dc7e3cc03aa7a09cb04164d65a4ef7ffe561c7587c42f62c7f5a8eaeaebf16f6d422fef39a6171322cbd819b04e45afd701928c8f02c9fef

    • SSDEEP

      192:ybjmJpxbq1ecenPiyCLGHbjmJzXYWu8+M:ybyPxTXPiypHbytX/

    Score
    7/10
    microsoftphishing

    • Executes dropped EXE

    • Loads dropped DLL

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks