238f2b4e1067a1ca77e23529c2303d7c244af796eebfde1068e05a1ad66843b3 | Triage

Sharing

General

Target

6c4fa3ffcbc8e8d9cd5c94a0b6d7775b_JaffaCakes118
Size

101KB
Sample

240523-z966qshc52
MD5

6c4fa3ffcbc8e8d9cd5c94a0b6d7775b
SHA1

216fdcd0b4ca763924f4b5c0ae3b270e06cbf221
SHA256

238f2b4e1067a1ca77e23529c2303d7c244af796eebfde1068e05a1ad66843b3
SHA512

57560780e900ca1be54c774cf11e9b40449369f04edd095c25acd479e0553a3a45bb7df3efaa75cb29db90f1e2634681680e211786f1c6b921b27cc822dffbcd
SSDEEP

3072:LWP1JebSOsbPNQYgnmlDCv5C+zMNDte6YzWLx/qMZ4Oou0j4SKMtLY:yPQUOSLp

Score

6^/10

Malware Config

Targets

- Target
  
  6c4fa3ffcbc8e8d9cd5c94a0b6d7775b_JaffaCakes118
- Size
  
  101KB
- MD5
  
  6c4fa3ffcbc8e8d9cd5c94a0b6d7775b
- SHA1
  
  216fdcd0b4ca763924f4b5c0ae3b270e06cbf221
- SHA256
  
  238f2b4e1067a1ca77e23529c2303d7c244af796eebfde1068e05a1ad66843b3
- SHA512
  
  57560780e900ca1be54c774cf11e9b40449369f04edd095c25acd479e0553a3a45bb7df3efaa75cb29db90f1e2634681680e211786f1c6b921b27cc822dffbcd
- SSDEEP
  
  3072:LWP1JebSOsbPNQYgnmlDCv5C+zMNDte6YzWLx/qMZ4Oou0j4SKMtLY:yPQUOSLp
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2