Overview

overview

6

Static

static

5

29a86d82b3...18.exe

windows7-x64

6

29a86d82b3...18.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    29a86d82b347138c4f4ea2bda54cc476_JaffaCakes118

  • Size

    791KB

  • Sample

    240509-m63b6aec2s

  • MD5

    29a86d82b347138c4f4ea2bda54cc476

  • SHA1

    f905435c03cbe3bc2acc7eb36af41d9834b4d7dc

  • SHA256

    c8a9707a37e158a92444f34eeef635567b1ed497bb09c32d94fb7a3878f69982

  • SHA512

    7459818eebe5e7783a4da47c5bcc49b5a77c0c74ab3b03270387137912e0b0d199e69cbada07a1d78c1dbf7a7f7e797f5eaca246179762ce9ff82582674d7a25

  • SSDEEP

    12288:bhkDgouVA2nxKkorvdRgQriDwOIxmxiZnYQE7PJcbN3wKDUXNr0S7UuX1:BRmJkcoQricOIQxiZY1WN3LDUXZ0M

Score
6/10

Malware Config

Targets

    • Target

      29a86d82b347138c4f4ea2bda54cc476_JaffaCakes118

    • Size

      791KB

    • MD5

      29a86d82b347138c4f4ea2bda54cc476

    • SHA1

      f905435c03cbe3bc2acc7eb36af41d9834b4d7dc

    • SHA256

      c8a9707a37e158a92444f34eeef635567b1ed497bb09c32d94fb7a3878f69982

    • SHA512

      7459818eebe5e7783a4da47c5bcc49b5a77c0c74ab3b03270387137912e0b0d199e69cbada07a1d78c1dbf7a7f7e797f5eaca246179762ce9ff82582674d7a25

    • SSDEEP

      12288:bhkDgouVA2nxKkorvdRgQriDwOIxmxiZnYQE7PJcbN3wKDUXNr0S7UuX1:BRmJkcoQricOIQxiZY1WN3LDUXZ0M

    Score
    6/10

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks