ddc4956aac1f7201715835ed9a5edeb367505ed8fb31614deb41bdc3cc9258e1 | Triage

Sharing

General

Target

36b5c45e3acea09f4dcb864acb21187a_JaffaCakes118
Size

251KB
Sample

240511-1nn9gadd65
MD5

36b5c45e3acea09f4dcb864acb21187a
SHA1

e882bc0248a93acd6200b408e367108c9ce1a145
SHA256

ddc4956aac1f7201715835ed9a5edeb367505ed8fb31614deb41bdc3cc9258e1
SHA512

1e44b7da7b98a892c6a78b0ecdfdc614de488f45e891a9dcfef2765d771dd0e30d57fc96b78ae6005925c549eca261c61325a3aa870f53c5e870f456b2fcbe53
SSDEEP

3072:p+AwlpJg7L5pgPxHuap3aKXDbhc5UUaB+SiJzlzHa3:p+AwlpJg7L5pgpHbXfhc5UUhSiJzlzm

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  36b5c45e3acea09f4dcb864acb21187a_JaffaCakes118
- Size
  
  251KB
- MD5
  
  36b5c45e3acea09f4dcb864acb21187a
- SHA1
  
  e882bc0248a93acd6200b408e367108c9ce1a145
- SHA256
  
  ddc4956aac1f7201715835ed9a5edeb367505ed8fb31614deb41bdc3cc9258e1
- SHA512
  
  1e44b7da7b98a892c6a78b0ecdfdc614de488f45e891a9dcfef2765d771dd0e30d57fc96b78ae6005925c549eca261c61325a3aa870f53c5e870f456b2fcbe53
- SSDEEP
  
  3072:p+AwlpJg7L5pgPxHuap3aKXDbhc5UUaB+SiJzlzHa3:p+AwlpJg7L5pgpHbXfhc5UUhSiJzlzm
Score

6^/10

discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Program crash
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Network Service Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2