General

  • Target

    78cd1fea1e228624fbe9e5a8bfd22803_JaffaCakes118

  • Size

    124KB

  • Sample

    240527-l8dk5sha52

  • MD5

    78cd1fea1e228624fbe9e5a8bfd22803

  • SHA1

    1098e786ecd9c38807ca0260254c29d2b9ac4fd2

  • SHA256

    0e5731849a5274705251a772b9cfc527d4646e5af1d0d8a9c0dc536d3a60ef73

  • SHA512

    e852a97358f005dbcd95261114290e8ce782a4d1ca67603e5545d51de3815e6c063df8b37947c33e0ed09d9e342839ba339e37ce682a12ea44a229b519fb5d96

  • SSDEEP

    3072:ZKbjLrUALeV5f3hfnD5VD4jqgamPRccbT328t:ZKbiV7fD3vIU8

Score
10/10

Malware Config

Targets

    • Target

      78cd1fea1e228624fbe9e5a8bfd22803_JaffaCakes118

    • Size

      124KB

    • MD5

      78cd1fea1e228624fbe9e5a8bfd22803

    • SHA1

      1098e786ecd9c38807ca0260254c29d2b9ac4fd2

    • SHA256

      0e5731849a5274705251a772b9cfc527d4646e5af1d0d8a9c0dc536d3a60ef73

    • SHA512

      e852a97358f005dbcd95261114290e8ce782a4d1ca67603e5545d51de3815e6c063df8b37947c33e0ed09d9e342839ba339e37ce682a12ea44a229b519fb5d96

    • SSDEEP

      3072:ZKbjLrUALeV5f3hfnD5VD4jqgamPRccbT328t:ZKbiV7fD3vIU8

    Score
    10/10
    • Emotet

      Emotet is a trojan that is primarily spread through spam emails.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks