ce0c621ce6d97cebc3365c119ed4f71e79cb8ea64435f24efc175c25cc734285 | Triage

Sharing

General

Target

62bc5119b60e421cd2be25b61f436279_JaffaCakes118
Size

52KB
Sample

240521-k1f6mafe97
MD5

62bc5119b60e421cd2be25b61f436279
SHA1

10fc917ac8db779044e1e41b40cfd12fd37206a9
SHA256

ce0c621ce6d97cebc3365c119ed4f71e79cb8ea64435f24efc175c25cc734285
SHA512

bc1022ebaecde9b8af46014e559819adb7273d27adffc79b004f05e52eb4d0d13c7d67b65c43b0c47bf5b23bfc51f6ba2260b4b8eefe8ef19696b6b332b5cac6
SSDEEP

1536:aNTosnQRcxisR4k1BRAqg4Pw6kGCoRFR8hHP/+adSqWt7QYPF9vs:9snQRcxisR4k1BRAqg4Pw6kGCoRFR8hD

Score

6^/10

Malware Config

Targets

- Target
  
  62bc5119b60e421cd2be25b61f436279_JaffaCakes118
- Size
  
  52KB
- MD5
  
  62bc5119b60e421cd2be25b61f436279
- SHA1
  
  10fc917ac8db779044e1e41b40cfd12fd37206a9
- SHA256
  
  ce0c621ce6d97cebc3365c119ed4f71e79cb8ea64435f24efc175c25cc734285
- SHA512
  
  bc1022ebaecde9b8af46014e559819adb7273d27adffc79b004f05e52eb4d0d13c7d67b65c43b0c47bf5b23bfc51f6ba2260b4b8eefe8ef19696b6b332b5cac6
- SSDEEP
  
  1536:aNTosnQRcxisR4k1BRAqg4Pw6kGCoRFR8hHP/+adSqWt7QYPF9vs:9snQRcxisR4k1BRAqg4Pw6kGCoRFR8hD
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2