e5fa1968269047fe90755764a88409e5f2c9c871128f71d5352c1010a730b102 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4b16598edf2efbf93915f8acd0488f95_JaffaCakes118
Size

76KB
Sample

240516-pqqpjacf41
MD5

4b16598edf2efbf93915f8acd0488f95
SHA1

4c1269a9fdeeddbac62662ac5c845bdd38bdcd35
SHA256

e5fa1968269047fe90755764a88409e5f2c9c871128f71d5352c1010a730b102
SHA512

6d83a43e23daf4e0343b44314f5c63da27cd029b709475f3c406208e3643ea537b5691de5fbaff740def64e86737a28faf2aa1379b124057ef1619edd40a629a
SSDEEP

1536:pYiU2azMla0PeFI0jFN7WT9hMg1GCzouvOQV10fNOwc343laaoYDzbnmw:pYCa0PeZjIGI6bnh

Score

6^/10

Malware Config

Targets

- Target
  
  4b16598edf2efbf93915f8acd0488f95_JaffaCakes118
- Size
  
  76KB
- MD5
  
  4b16598edf2efbf93915f8acd0488f95
- SHA1
  
  4c1269a9fdeeddbac62662ac5c845bdd38bdcd35
- SHA256
  
  e5fa1968269047fe90755764a88409e5f2c9c871128f71d5352c1010a730b102
- SHA512
  
  6d83a43e23daf4e0343b44314f5c63da27cd029b709475f3c406208e3643ea537b5691de5fbaff740def64e86737a28faf2aa1379b124057ef1619edd40a629a
- SSDEEP
  
  1536:pYiU2azMla0PeFI0jFN7WT9hMg1GCzouvOQV10fNOwc343laaoYDzbnmw:pYCa0PeZjIGI6bnh
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2