8f9596fa8f1ad2736c4e203b80e194d27dd9c30ce39cdccc8bf2af4fc6d37c14 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5cb20fefe21d6d24953b7eda02701ec1_JaffaCakes118
Size

264KB
Sample

240520-ctme3afg9y
MD5

5cb20fefe21d6d24953b7eda02701ec1
SHA1

2b40d2310eb6bb4fec5c41403ca5ce6b3b607050
SHA256

8f9596fa8f1ad2736c4e203b80e194d27dd9c30ce39cdccc8bf2af4fc6d37c14
SHA512

50d0e78f68ffa964b1f62169e074a6c30826b6c921cdd0d40c9a537d109ab0622d55907f00219a50413355a7c48720b063cd02112fb87aab5aa24e868e6cc31e
SSDEEP

3072:JFAKdhtscSuZJL7uUAVbPhCHbw0jCOAMnMGaTndVh58t19o2WtwzJRf1eyl:VhtscSuZJL7EguCog

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  5cb20fefe21d6d24953b7eda02701ec1_JaffaCakes118
- Size
  
  264KB
- MD5
  
  5cb20fefe21d6d24953b7eda02701ec1
- SHA1
  
  2b40d2310eb6bb4fec5c41403ca5ce6b3b607050
- SHA256
  
  8f9596fa8f1ad2736c4e203b80e194d27dd9c30ce39cdccc8bf2af4fc6d37c14
- SHA512
  
  50d0e78f68ffa964b1f62169e074a6c30826b6c921cdd0d40c9a537d109ab0622d55907f00219a50413355a7c48720b063cd02112fb87aab5aa24e868e6cc31e
- SSDEEP
  
  3072:JFAKdhtscSuZJL7uUAVbPhCHbw0jCOAMnMGaTndVh58t19o2WtwzJRf1eyl:VhtscSuZJL7EguCog
Score

6^/10

discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Program crash
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Network Service Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2