General

  • Target

    215fbc4bdabb9dbfdbaac8af9930cfce_JaffaCakes118

  • Size

    202KB

  • Sample

    240507-x3x85sbe8z

  • MD5

    215fbc4bdabb9dbfdbaac8af9930cfce

  • SHA1

    b54fdf7cc81232e51070819af08cf28b674639fa

  • SHA256

    352efca0b5b57dfecd8ba625e85bd482c4f53408b8ff99c142f6359f5d03fc3d

  • SHA512

    8178e76e3b7c745fa0f80051a6f749ad4d2e44ab547358a30c7ea9de6ea9a87251351ecdc873dcd4b5dfd1cadc18ab81f2790feb41f7e5de0cd255f6c491c9fc

  • SSDEEP

    6144:HT70BozapYmAx5TRDDh5HDIjM/9AmElwec5hzE:HTMozapYmAx5FXbsg/KmElfc5hzE

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

137.74.237.194:23

Targets

    • Target

      215fbc4bdabb9dbfdbaac8af9930cfce_JaffaCakes118

    • Size

      202KB

    • MD5

      215fbc4bdabb9dbfdbaac8af9930cfce

    • SHA1

      b54fdf7cc81232e51070819af08cf28b674639fa

    • SHA256

      352efca0b5b57dfecd8ba625e85bd482c4f53408b8ff99c142f6359f5d03fc3d

    • SHA512

      8178e76e3b7c745fa0f80051a6f749ad4d2e44ab547358a30c7ea9de6ea9a87251351ecdc873dcd4b5dfd1cadc18ab81f2790feb41f7e5de0cd255f6c491c9fc

    • SSDEEP

      6144:HT70BozapYmAx5TRDDh5HDIjM/9AmElwec5hzE:HTMozapYmAx5FXbsg/KmElfc5hzE

    Score
    9/10
    • Contacts a large (94863) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

MITRE ATT&CK Enterprise v15

Tasks