98f4a9d8b672362a5f09438be0ac748b024a604b903c30186054ccb933a74557 | Triage

Sharing

General

Target

36a4da33d3eee19dea7ee721ea14da83_JaffaCakes118
Size

132KB
Sample

240511-1c85hacg63
MD5

36a4da33d3eee19dea7ee721ea14da83
SHA1

62749cc4ff51668f96b3da739c9c673d4e9fcdce
SHA256

98f4a9d8b672362a5f09438be0ac748b024a604b903c30186054ccb933a74557
SHA512

fd1abe10a8508375a99a5b0b2a33aa5274576c576cf31a7884855dc38e43d149b77e26454e5eaed69eedee1b7d440af04523c294abc9aa18bc7b3e205fc47557
SSDEEP

3072:nxc4GLvSgPleUIc1NHKjn6I/HRhDpTiICv1SwB/Q4fcxBNXqZPLOrnDDbAr1bs:nxc4GLvSgPleUIc1Nqjn6I/HRhDpTiIn

Score

6^/10

motw phishing

Malware Config

Targets

- Target
  
  36a4da33d3eee19dea7ee721ea14da83_JaffaCakes118
- Size
  
  132KB
- MD5
  
  36a4da33d3eee19dea7ee721ea14da83
- SHA1
  
  62749cc4ff51668f96b3da739c9c673d4e9fcdce
- SHA256
  
  98f4a9d8b672362a5f09438be0ac748b024a604b903c30186054ccb933a74557
- SHA512
  
  fd1abe10a8508375a99a5b0b2a33aa5274576c576cf31a7884855dc38e43d149b77e26454e5eaed69eedee1b7d440af04523c294abc9aa18bc7b3e205fc47557
- SSDEEP
  
  3072:nxc4GLvSgPleUIc1NHKjn6I/HRhDpTiICv1SwB/Q4fcxBNXqZPLOrnDDbAr1bs:nxc4GLvSgPleUIc1Nqjn6I/HRhDpTiIn
Score

6^/10

motw phishing
- Legitimate hosting services abused for malware hosting/C2
- Mark of the Web detected: This indicates that the page was originally saved or cloned.
  phishing motw
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2