f7432ad6da2cf6e63300e5e660f826fb069b2be66b801ad7e7cc9cd79b8a41ac | Triage

Sharing

General

Target

65a95983a11031e6504014bd4d023395_JaffaCakes118
Size

249KB
Sample

240522-cqqy3shb54
MD5

65a95983a11031e6504014bd4d023395
SHA1

e271aa0085084f3c484016c9216c2bd4896e726d
SHA256

f7432ad6da2cf6e63300e5e660f826fb069b2be66b801ad7e7cc9cd79b8a41ac
SHA512

6f83c3045beb42d860c597bca9e92799e93dd4634747be90d3de814c1383f395a87aa86c80aab7f018f0d567bb9339133c61d04b23ab67a88eab7a8f0a497735
SSDEEP

3072:QUcsCf/RMR3dUDcY2yxaEkflu28oLlmQHlrD22np2seHdlvbSVta:QUcsCf/RMR3dUDcY2yxaEkflu28oLHyb

Score

6^/10

Malware Config

Targets

- Target
  
  65a95983a11031e6504014bd4d023395_JaffaCakes118
- Size
  
  249KB
- MD5
  
  65a95983a11031e6504014bd4d023395
- SHA1
  
  e271aa0085084f3c484016c9216c2bd4896e726d
- SHA256
  
  f7432ad6da2cf6e63300e5e660f826fb069b2be66b801ad7e7cc9cd79b8a41ac
- SHA512
  
  6f83c3045beb42d860c597bca9e92799e93dd4634747be90d3de814c1383f395a87aa86c80aab7f018f0d567bb9339133c61d04b23ab67a88eab7a8f0a497735
- SSDEEP
  
  3072:QUcsCf/RMR3dUDcY2yxaEkflu28oLlmQHlrD22np2seHdlvbSVta:QUcsCf/RMR3dUDcY2yxaEkflu28oLHyb
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2