cdd343e4d903241d24997809c3b72a784cf2de36e13c8c5bbcfcad012c9ccf05 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7783c933768e3d96e4fc23ffe4f7277f_JaffaCakes118
Size

13KB
Sample

240527-b9hldaca7v
MD5

7783c933768e3d96e4fc23ffe4f7277f
SHA1

d77143fbe1bd6fa00a4c06b320b52393c70b41de
SHA256

cdd343e4d903241d24997809c3b72a784cf2de36e13c8c5bbcfcad012c9ccf05
SHA512

eda4f0564d06793a2bf1fb7f7a547f39ef631bfdbd89e861b4dff631fd491ab74eef9da796b310df0c63fb24e92e5325f1a5535d472ca0eae150795438b7fcec
SSDEEP

192:VnsQUPB3kQX4Tjbym2iAiUDat1o8cqS1+lj6qRndnGo27BM5j313p/iJh2e:lZUtk1by+XZDNj33p/iJh2e

Score

8^/10

execution

Malware Config

Targets

- Target
  
  7783c933768e3d96e4fc23ffe4f7277f_JaffaCakes118
- Size
  
  13KB
- MD5
  
  7783c933768e3d96e4fc23ffe4f7277f
- SHA1
  
  d77143fbe1bd6fa00a4c06b320b52393c70b41de
- SHA256
  
  cdd343e4d903241d24997809c3b72a784cf2de36e13c8c5bbcfcad012c9ccf05
- SHA512
  
  eda4f0564d06793a2bf1fb7f7a547f39ef631bfdbd89e861b4dff631fd491ab74eef9da796b310df0c63fb24e92e5325f1a5535d472ca0eae150795438b7fcec
- SSDEEP
  
  192:VnsQUPB3kQX4Tjbym2iAiUDat1o8cqS1+lj6qRndnGo27BM5j313p/iJh2e:lZUtk1by+XZDNj33p/iJh2e
Score

8^/10

execution
- Blocklisted process makes network request
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2