7529de20e4d2ba390c02f06e44433026cad6ec44c2ff3de3df8020087f47d313 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

81dfe124f84a573e5566a972ea9d4d21_JaffaCakes118
Size

149KB
Sample

240529-zmwfqahd7z
MD5

81dfe124f84a573e5566a972ea9d4d21
SHA1

fd8c4b663bbbbae4630c983b9752758f49c264d2
SHA256

7529de20e4d2ba390c02f06e44433026cad6ec44c2ff3de3df8020087f47d313
SHA512

2482068f56618abd0a210074514cd0c83b8a56472adc88c69773b6bbd8b2f367bc037c562228914bc3cd67d0f0c9774549f86cf4fa605ec166de29afcd9f527e
SSDEEP

3072:CAGwB1eoPGGz7Np1C+4/aAXt8hebh+NbVkh41POAABn2hWByGObuWP+NKMtyN:C3PoPbp1C+4/aAXt8RVVmAA8Ym

Score

6^/10

Malware Config

Targets

- Target
  
  81dfe124f84a573e5566a972ea9d4d21_JaffaCakes118
- Size
  
  149KB
- MD5
  
  81dfe124f84a573e5566a972ea9d4d21
- SHA1
  
  fd8c4b663bbbbae4630c983b9752758f49c264d2
- SHA256
  
  7529de20e4d2ba390c02f06e44433026cad6ec44c2ff3de3df8020087f47d313
- SHA512
  
  2482068f56618abd0a210074514cd0c83b8a56472adc88c69773b6bbd8b2f367bc037c562228914bc3cd67d0f0c9774549f86cf4fa605ec166de29afcd9f527e
- SSDEEP
  
  3072:CAGwB1eoPGGz7Np1C+4/aAXt8hebh+NbVkh41POAABn2hWByGObuWP+NKMtyN:C3PoPbp1C+4/aAXt8RVVmAA8Ym
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2