General

  • Target

    69ebd1dd28056cdc4d56ba78506e6ed2_JaffaCakes118

  • Size

    153KB

  • Sample

    240523-ge6bvafe46

  • MD5

    69ebd1dd28056cdc4d56ba78506e6ed2

  • SHA1

    a75cb834a956662700e9be5fa16e6c2178e2e178

  • SHA256

    ecd47f4204da14a45cb2bbae813c2aaa7980b92a91ba2855669d3f1be25bef12

  • SHA512

    0edb8989260a7d550ecec89d3f411ff8ff62a1e60be99a495999583ffed3867e71d6ad5225b5e807a7997ec8377c9da5083e80c0ffe079e27cee85527d2c0f3a

  • SSDEEP

    1536:mGINVczHkD9icmT+FFdZ+a9l630RyEb95KH1EYNriy+eHcJBsz/xMr+6d:mGIn/iKFT63eJcELhJP

Score
10/10

Malware Config

Targets

    • Target

      69ebd1dd28056cdc4d56ba78506e6ed2_JaffaCakes118

    • Size

      153KB

    • MD5

      69ebd1dd28056cdc4d56ba78506e6ed2

    • SHA1

      a75cb834a956662700e9be5fa16e6c2178e2e178

    • SHA256

      ecd47f4204da14a45cb2bbae813c2aaa7980b92a91ba2855669d3f1be25bef12

    • SHA512

      0edb8989260a7d550ecec89d3f411ff8ff62a1e60be99a495999583ffed3867e71d6ad5225b5e807a7997ec8377c9da5083e80c0ffe079e27cee85527d2c0f3a

    • SSDEEP

      1536:mGINVczHkD9icmT+FFdZ+a9l630RyEb95KH1EYNriy+eHcJBsz/xMr+6d:mGIn/iKFT63eJcELhJP

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • An obfuscated cmd.exe command-line is typically used to evade detection.

MITRE ATT&CK Enterprise v15

Tasks