Overview

overview

6

Static

static

1

65a95983a1...8.html

windows7-x64

6

65a95983a1...8.html

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    65a95983a11031e6504014bd4d023395_JaffaCakes118

  • Size

    249KB

  • Sample

    240522-cqqy3shb54

  • MD5

    65a95983a11031e6504014bd4d023395

  • SHA1

    e271aa0085084f3c484016c9216c2bd4896e726d

  • SHA256

    f7432ad6da2cf6e63300e5e660f826fb069b2be66b801ad7e7cc9cd79b8a41ac

  • SHA512

    6f83c3045beb42d860c597bca9e92799e93dd4634747be90d3de814c1383f395a87aa86c80aab7f018f0d567bb9339133c61d04b23ab67a88eab7a8f0a497735

  • SSDEEP

    3072:QUcsCf/RMR3dUDcY2yxaEkflu28oLlmQHlrD22np2seHdlvbSVta:QUcsCf/RMR3dUDcY2yxaEkflu28oLHyb

Score
6/10

Malware Config

Targets

    • Target

      65a95983a11031e6504014bd4d023395_JaffaCakes118

    • Size

      249KB

    • MD5

      65a95983a11031e6504014bd4d023395

    • SHA1

      e271aa0085084f3c484016c9216c2bd4896e726d

    • SHA256

      f7432ad6da2cf6e63300e5e660f826fb069b2be66b801ad7e7cc9cd79b8a41ac

    • SHA512

      6f83c3045beb42d860c597bca9e92799e93dd4634747be90d3de814c1383f395a87aa86c80aab7f018f0d567bb9339133c61d04b23ab67a88eab7a8f0a497735

    • SSDEEP

      3072:QUcsCf/RMR3dUDcY2yxaEkflu28oLlmQHlrD22np2seHdlvbSVta:QUcsCf/RMR3dUDcY2yxaEkflu28oLHyb

    Score
    6/10

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

1
T1102

Impact

Resource Development

Reconnaissance

Tasks