0bc20dcd3f42e2fcdad066c71a3ad38f7cb2d91879e2618b55f2af0a9a5ea417 | Triage

Sharing

General

Target

8792d64b50232f86976b584600252f5e_JaffaCakes118
Size

115KB
Sample

240531-th1xraeb28
MD5

8792d64b50232f86976b584600252f5e
SHA1

333e76089f365cdef06499f48d0d81f3faa78207
SHA256

0bc20dcd3f42e2fcdad066c71a3ad38f7cb2d91879e2618b55f2af0a9a5ea417
SHA512

179ed6b8ff5e7976b65ab1e9b1bf73f62c94906bf1b7a285c26b1439dda7d941984ad1bb8ddfc069dea2703fc9dab63815ef7c37f6261f2c0831904bf6d711c4
SSDEEP

3072:hqRcVhIVs2LQevj40MZEPjLpUxAfYxslxNcl8CLcXmNRSao4CrHJP74nhkVgLgao:wcyjXmNRj0PAg

Score

6^/10

Malware Config

Targets

- Target
  
  8792d64b50232f86976b584600252f5e_JaffaCakes118
- Size
  
  115KB
- MD5
  
  8792d64b50232f86976b584600252f5e
- SHA1
  
  333e76089f365cdef06499f48d0d81f3faa78207
- SHA256
  
  0bc20dcd3f42e2fcdad066c71a3ad38f7cb2d91879e2618b55f2af0a9a5ea417
- SHA512
  
  179ed6b8ff5e7976b65ab1e9b1bf73f62c94906bf1b7a285c26b1439dda7d941984ad1bb8ddfc069dea2703fc9dab63815ef7c37f6261f2c0831904bf6d711c4
- SSDEEP
  
  3072:hqRcVhIVs2LQevj40MZEPjLpUxAfYxslxNcl8CLcXmNRSao4CrHJP74nhkVgLgao:wcyjXmNRj0PAg
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2