da872d06a4c8c9bb9ee74a5f917173893899a7d4b3e833f1c9f84fbe02100068 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70fecfc6e097a68e8fc90867b4c71abf_JaffaCakes118
Size

170KB
Sample

240525-f9wv8afh8z
MD5

70fecfc6e097a68e8fc90867b4c71abf
SHA1

5cdb472dff90af8657cb8f8ad1ab0a2885853642
SHA256

da872d06a4c8c9bb9ee74a5f917173893899a7d4b3e833f1c9f84fbe02100068
SHA512

299e534422e62bbc49cddc1d5f469e0b40e94c9acdb4b712d96efa678e71c696adf22e708effa55007681d408b4ac56e6969f853069e6d5cd3bb42e24b9e820a
SSDEEP

3072:y8muQW45vvj5/Q1e6Pl9puxhfTvKpogbNmMC8:wuQ/5vvPhDK6c

Score

6^/10

Malware Config

Targets

- Target
  
  70fecfc6e097a68e8fc90867b4c71abf_JaffaCakes118
- Size
  
  170KB
- MD5
  
  70fecfc6e097a68e8fc90867b4c71abf
- SHA1
  
  5cdb472dff90af8657cb8f8ad1ab0a2885853642
- SHA256
  
  da872d06a4c8c9bb9ee74a5f917173893899a7d4b3e833f1c9f84fbe02100068
- SHA512
  
  299e534422e62bbc49cddc1d5f469e0b40e94c9acdb4b712d96efa678e71c696adf22e708effa55007681d408b4ac56e6969f853069e6d5cd3bb42e24b9e820a
- SSDEEP
  
  3072:y8muQW45vvj5/Q1e6Pl9puxhfTvKpogbNmMC8:wuQ/5vvPhDK6c
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2