General

  • Target

    9036e0230ee12649f9e27dfd15bd6c69_JaffaCakes118

  • Size

    168KB

  • Sample

    240603-ckwx5sfe7y

  • MD5

    9036e0230ee12649f9e27dfd15bd6c69

  • SHA1

    b5bfbf2514f33a8ad2370da8b541d261ddfc5141

  • SHA256

    7a66f51241cb8e9dabb0243c45fae3c827a789fbc3787fc9c131e79c06f308f3

  • SHA512

    c6d7cc5c51b1222e6d366d9ed0f5f8f0707a0acae1f0ffd0dd7ea2316a215a029e442b029d82ef9de2a480dc782024aa080d94c1d6871005f0bf747151cc8a57

  • SSDEEP

    3072:mJFENLuuoUHKLCcmBM9xA3kz6U5W3Rm7/JLX+e/qPY88gsQsNwWlur1YrkpGt4DX:mJnuzHYhm29i0zB58Q7/JLX

Score
10/10

Malware Config

Targets

    • Target

      9036e0230ee12649f9e27dfd15bd6c69_JaffaCakes118

    • Size

      168KB

    • MD5

      9036e0230ee12649f9e27dfd15bd6c69

    • SHA1

      b5bfbf2514f33a8ad2370da8b541d261ddfc5141

    • SHA256

      7a66f51241cb8e9dabb0243c45fae3c827a789fbc3787fc9c131e79c06f308f3

    • SHA512

      c6d7cc5c51b1222e6d366d9ed0f5f8f0707a0acae1f0ffd0dd7ea2316a215a029e442b029d82ef9de2a480dc782024aa080d94c1d6871005f0bf747151cc8a57

    • SSDEEP

      3072:mJFENLuuoUHKLCcmBM9xA3kz6U5W3Rm7/JLX+e/qPY88gsQsNwWlur1YrkpGt4DX:mJnuzHYhm29i0zB58Q7/JLX

    Score
    10/10
    • Emotet

      Emotet is a trojan that is primarily spread through spam emails.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks