13ecf7300e784c4bad7a2a3030feb282d6308eefd0f080475e1e3927d0efec2f | Triage

Sharing

General

Target

febd03f463b3aa6b3adc9fc444d649ba_JaffaCakes118
Size

771KB
Sample

240421-h3yscadh88
MD5

febd03f463b3aa6b3adc9fc444d649ba
SHA1

e65906380752a0027076eb9bd31e4fefdc0497ba
SHA256

13ecf7300e784c4bad7a2a3030feb282d6308eefd0f080475e1e3927d0efec2f
SHA512

72c4f9e04857356747d13581aa64ef8362073a95ffbce1f4b19b310673b95820a0d4fc1310e784d65a44369b4072e5f3215ab9c9c69c33b47871b98491335d41
SSDEEP

24576:Gpff9RGfOBCgvmHfxiWb10hJaothZ2/T6FBBB:GlnGGBCam5N/ofT

Score

7^/10

Malware Config

Targets

- Target
  
  febd03f463b3aa6b3adc9fc444d649ba_JaffaCakes118
- Size
  
  771KB
- MD5
  
  febd03f463b3aa6b3adc9fc444d649ba
- SHA1
  
  e65906380752a0027076eb9bd31e4fefdc0497ba
- SHA256
  
  13ecf7300e784c4bad7a2a3030feb282d6308eefd0f080475e1e3927d0efec2f
- SHA512
  
  72c4f9e04857356747d13581aa64ef8362073a95ffbce1f4b19b310673b95820a0d4fc1310e784d65a44369b4072e5f3215ab9c9c69c33b47871b98491335d41
- SSDEEP
  
  24576:Gpff9RGfOBCgvmHfxiWb10hJaothZ2/T6FBBB:GlnGGBCam5N/ofT
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2