387e3f43616ca564350ffb6257a264b251f2ae5d9f86c087b85bcc532e0ba6f6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1fed3b9c75d5a39041b2e0a4c5e78e57_JaffaCakes118
Size

34KB
Sample

240507-jk9ybsfc7s
MD5

1fed3b9c75d5a39041b2e0a4c5e78e57
SHA1

89a1372754323d32218bb1c7c288c443f3cddbc7
SHA256

387e3f43616ca564350ffb6257a264b251f2ae5d9f86c087b85bcc532e0ba6f6
SHA512

6debf6449de474dcd5843f829eb14137a12fc37b9903e7fb547cd3678645eef0eebf03dbcc2f7b65df7fbdb4433e9b03c686f6f3fb3c9e2288b8f41db494ba0b
SSDEEP

768:yI2dBe4ekEi6AW67t0hkS0U4rRAYgPwHgnj1T100Fs3RLjrOloo6ed9WOyd/G:oAiPW67ehkS0U4tNgP91T100u3RLjal1

Score

6^/10

Malware Config

Targets

- Target
  
  1fed3b9c75d5a39041b2e0a4c5e78e57_JaffaCakes118
- Size
  
  34KB
- MD5
  
  1fed3b9c75d5a39041b2e0a4c5e78e57
- SHA1
  
  89a1372754323d32218bb1c7c288c443f3cddbc7
- SHA256
  
  387e3f43616ca564350ffb6257a264b251f2ae5d9f86c087b85bcc532e0ba6f6
- SHA512
  
  6debf6449de474dcd5843f829eb14137a12fc37b9903e7fb547cd3678645eef0eebf03dbcc2f7b65df7fbdb4433e9b03c686f6f3fb3c9e2288b8f41db494ba0b
- SSDEEP
  
  768:yI2dBe4ekEi6AW67t0hkS0U4rRAYgPwHgnj1T100Fs3RLjrOloo6ed9WOyd/G:oAiPW67ehkS0U4tNgP91T100u3RLjal1
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2