General

  • Target

    86f8c16a3241f99136391428a107c30a_JaffaCakes118

  • Size

    62KB

  • Sample

    240531-pf3aksgf5w

  • MD5

    86f8c16a3241f99136391428a107c30a

  • SHA1

    a4459860666c7ef8006f01c2b787093128f17c11

  • SHA256

    b0457ecdcc1940850af6d858e2f2e91e555a71f250f53b7ba9d4434a81810032

  • SHA512

    62061a917373192dc0b67498d93a93a687827ce698de2631f28a002b0b5cecdc12a3fcfbf2c55203d2aad6129774cd57c9fa05614631007248ece235f341425e

  • SSDEEP

    768:PuWGdj68HyHe4NMj03HMeLlo6T9y0vyElGcIMvbfC7uZkd8sjoYqY5:PzeyHe52HMeLlzaNIvb0Ld8s/qK

Score
10/10

Malware Config

Extracted

Language
hta
Source
URLs
hta.dropper

http://efoijowufjaowudawd.com/OU/stem.php?utma=brandg

Targets

    • Target

      86f8c16a3241f99136391428a107c30a_JaffaCakes118

    • Size

      62KB

    • MD5

      86f8c16a3241f99136391428a107c30a

    • SHA1

      a4459860666c7ef8006f01c2b787093128f17c11

    • SHA256

      b0457ecdcc1940850af6d858e2f2e91e555a71f250f53b7ba9d4434a81810032

    • SHA512

      62061a917373192dc0b67498d93a93a687827ce698de2631f28a002b0b5cecdc12a3fcfbf2c55203d2aad6129774cd57c9fa05614631007248ece235f341425e

    • SSDEEP

      768:PuWGdj68HyHe4NMj03HMeLlo6T9y0vyElGcIMvbfC7uZkd8sjoYqY5:PzeyHe52HMeLlzaNIvb0Ld8s/qK

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

MITRE ATT&CK Enterprise v15

Tasks