297fca1f8eab57fdd49aeff6c5663e98d47022c6766bc27da4a8485aff797e01 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a8a51826e61cc5f3b6a09dd9a446bc9_JaffaCakes118
Size

617KB
Sample

240516-l5lscafh45
MD5

4a8a51826e61cc5f3b6a09dd9a446bc9
SHA1

1a5f89ad2069e3f8d467dc5032a717ce3c98d058
SHA256

297fca1f8eab57fdd49aeff6c5663e98d47022c6766bc27da4a8485aff797e01
SHA512

c472d717cdfdb170242b9778ad2794e85cf8c1af46d5029689e31cb3f7d1866ad43594242cd4eb70ad4f6f195dd8fbc34924d14f25bbe634ddb03922a036255a
SSDEEP

384:3s73tbrN79ozVzEFH3WdKvaANFvFQlyjy74si6rGsNAYAXJqskGQ:3s73T3WUvaANFvFgyyhAZqCQ

Score

10^/10

Malware Config

Extracted

Credentials

Protocol: ftp
Host:
lindrupmartinsen.no
Port:
21
Username:
lindrupadmin
Password:
abraka555

Targets

- Target
  
  4a8a51826e61cc5f3b6a09dd9a446bc9_JaffaCakes118
- Size
  
  617KB
- MD5
  
  4a8a51826e61cc5f3b6a09dd9a446bc9
- SHA1
  
  1a5f89ad2069e3f8d467dc5032a717ce3c98d058
- SHA256
  
  297fca1f8eab57fdd49aeff6c5663e98d47022c6766bc27da4a8485aff797e01
- SHA512
  
  c472d717cdfdb170242b9778ad2794e85cf8c1af46d5029689e31cb3f7d1866ad43594242cd4eb70ad4f6f195dd8fbc34924d14f25bbe634ddb03922a036255a
- SSDEEP
  
  384:3s73tbrN79ozVzEFH3WdKvaANFvFQlyjy74si6rGsNAYAXJqskGQ:3s73T3WUvaANFvFgyyhAZqCQ
Score

10^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2