10661ddc5d3c96f987f7d62711202861857e9b54498eb0c010d1abb870988702 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

05742958c0c6c0a922650130b3b512e5_JaffaCakes118
Size

36KB
Sample

240428-sc9r2aaf5w
MD5

05742958c0c6c0a922650130b3b512e5
SHA1

b6067a28bcfac6a523995c9230debb03ac1e3ae1
SHA256

10661ddc5d3c96f987f7d62711202861857e9b54498eb0c010d1abb870988702
SHA512

a231d7bab230a99158d8f72853f8c1f7d740f7abd5c84a883864f493bce370853dfb798c21df1769089430f6ce1e59c3c09c09c7b0d98a9305f3ff0b27580379
SSDEEP

768:ljtPekHFeFWFyK2GKJeAGFLFhGQdGFbF3vnr3vvnnlkNKxlxpxlx8NoNuxrlK8Pk:lxPekHQsYK2GKJetl7GQshBvnr3vvnlB

Score

6^/10

Malware Config

Targets

- Target
  
  05742958c0c6c0a922650130b3b512e5_JaffaCakes118
- Size
  
  36KB
- MD5
  
  05742958c0c6c0a922650130b3b512e5
- SHA1
  
  b6067a28bcfac6a523995c9230debb03ac1e3ae1
- SHA256
  
  10661ddc5d3c96f987f7d62711202861857e9b54498eb0c010d1abb870988702
- SHA512
  
  a231d7bab230a99158d8f72853f8c1f7d740f7abd5c84a883864f493bce370853dfb798c21df1769089430f6ce1e59c3c09c09c7b0d98a9305f3ff0b27580379
- SSDEEP
  
  768:ljtPekHFeFWFyK2GKJeAGFLFhGQdGFbF3vnr3vvnnlkNKxlxpxlx8NoNuxrlK8Pk:lxPekHQsYK2GKJetl7GQshBvnr3vvnlB
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2