d859c8b7f744b460008d6132f7f79b32c49646e45579488279edf38701395f90 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3f8fa8c496a6887b52d628fa6cbe231c_JaffaCakes118
Size

155KB
Sample

240513-p2wd6afb7v
MD5

3f8fa8c496a6887b52d628fa6cbe231c
SHA1

a79ddb0afc59a4a5d1dfdd854eaad2f4d3d17fe3
SHA256

d859c8b7f744b460008d6132f7f79b32c49646e45579488279edf38701395f90
SHA512

4e88b0546dcaa13f0fbeee8e63d8532ec6f07de85f4e72f30d0d0f11adbe85ad54c8e386da1ae3cdfcf581f9a051d634caac8258bdf7b24f7524e7ea35d41028
SSDEEP

3072:H9nx9m5tlw3OgvCpmNoAA3ctCj8tFOLW1fVw:5x9mStvCpmNhOLh

Score

6^/10

Malware Config

Targets

- Target
  
  3f8fa8c496a6887b52d628fa6cbe231c_JaffaCakes118
- Size
  
  155KB
- MD5
  
  3f8fa8c496a6887b52d628fa6cbe231c
- SHA1
  
  a79ddb0afc59a4a5d1dfdd854eaad2f4d3d17fe3
- SHA256
  
  d859c8b7f744b460008d6132f7f79b32c49646e45579488279edf38701395f90
- SHA512
  
  4e88b0546dcaa13f0fbeee8e63d8532ec6f07de85f4e72f30d0d0f11adbe85ad54c8e386da1ae3cdfcf581f9a051d634caac8258bdf7b24f7524e7ea35d41028
- SSDEEP
  
  3072:H9nx9m5tlw3OgvCpmNoAA3ctCj8tFOLW1fVw:5x9mStvCpmNhOLh
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2