7fd04bacc89bd4d32560962855c3e49fa8d8cdd00cc711263c077d961c294960 | Triage

Sharing

General

Target

02b1ae7af87a13437b724e3f01c70f15_JaffaCakes118
Size

134KB
Sample

240427-hzr6dsde79
MD5

02b1ae7af87a13437b724e3f01c70f15
SHA1

eaff0158a30bc0f10e98890ed7fccd6d82c78a71
SHA256

7fd04bacc89bd4d32560962855c3e49fa8d8cdd00cc711263c077d961c294960
SHA512

a7ece4e0c050786fbcc4fe708b317b4c3e636b4bb3d85401304d3a24f1f787df10b5df8d3fb0eb307248179939572a0f126786437880e28ac5d8d65fb350ce44
SSDEEP

3072:0glSDn8E+VoJqx3aUsljX+lDCv5C+zMzVAW5s4xfMj4yUwn9bk:0glSDn8EyZ

Score

7^/10

Malware Config

Targets

- Target
  
  02b1ae7af87a13437b724e3f01c70f15_JaffaCakes118
- Size
  
  134KB
- MD5
  
  02b1ae7af87a13437b724e3f01c70f15
- SHA1
  
  eaff0158a30bc0f10e98890ed7fccd6d82c78a71
- SHA256
  
  7fd04bacc89bd4d32560962855c3e49fa8d8cdd00cc711263c077d961c294960
- SHA512
  
  a7ece4e0c050786fbcc4fe708b317b4c3e636b4bb3d85401304d3a24f1f787df10b5df8d3fb0eb307248179939572a0f126786437880e28ac5d8d65fb350ce44
- SSDEEP
  
  3072:0glSDn8E+VoJqx3aUsljX+lDCv5C+zMzVAW5s4xfMj4yUwn9bk:0glSDn8EyZ
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2