f8c8f9157cd09d9359c77e49cdc57201e961fdb11a2332211680b769535b7f0d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17517db065c4640ebcde6cf4e1cce385_JaffaCakes118
Size

144KB
Sample

240505-mtqslaba37
MD5

17517db065c4640ebcde6cf4e1cce385
SHA1

ae3f8cbea35fbfeb7e50cd9a2aa176813b8ea72d
SHA256

f8c8f9157cd09d9359c77e49cdc57201e961fdb11a2332211680b769535b7f0d
SHA512

9d288522e36f80c46c89dba06a88fa01ed3de260510d3d3d289a7e1b92431a6d8022d837c3dec196562d6b2df6a733475539a40b20c2c476145b1c7aea392387
SSDEEP

1536:Sy5+8exswp9Cqb8JVczVsEQIzVYlD64I8QW4sGpemhsaJqsE3tSkSG+PNgZ/yqDy:S+wpcqb6VMsAzVYlD64I/Q+

Score

6^/10

Malware Config

Targets

- Target
  
  17517db065c4640ebcde6cf4e1cce385_JaffaCakes118
- Size
  
  144KB
- MD5
  
  17517db065c4640ebcde6cf4e1cce385
- SHA1
  
  ae3f8cbea35fbfeb7e50cd9a2aa176813b8ea72d
- SHA256
  
  f8c8f9157cd09d9359c77e49cdc57201e961fdb11a2332211680b769535b7f0d
- SHA512
  
  9d288522e36f80c46c89dba06a88fa01ed3de260510d3d3d289a7e1b92431a6d8022d837c3dec196562d6b2df6a733475539a40b20c2c476145b1c7aea392387
- SSDEEP
  
  1536:Sy5+8exswp9Cqb8JVczVsEQIzVYlD64I8QW4sGpemhsaJqsE3tSkSG+PNgZ/yqDy:S+wpcqb6VMsAzVYlD64I/Q+
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2