General

  • Target

    99d25dcb4e5dc2d4e93bebf01d84e947_JaffaCakes118

  • Size

    124KB

  • Sample

    240606-c2ep7aeh8x

  • MD5

    99d25dcb4e5dc2d4e93bebf01d84e947

  • SHA1

    58c90e6e0d3d1e3217df4dbebfd806ca6e7181a9

  • SHA256

    506fa4b97cb81314aa929dee6349218e06e85fbc4f78469592e0a4b90eab17cd

  • SHA512

    765cfc0d2be57158cf7244c52beb41f790071aa77e855fddfdb095c23d8dd46a10bdc6cb6adfba5ea2f472cc69c8d8b36961f5c83065ea4dbf2682ab3754f076

  • SSDEEP

    1536:BfqhgyWB5upk8p84DzpM0ai8KGJYV31Gkr4jrxU/ruymEPfb+EPpUdDZNX:dqhgyvzyVzYVlPOrqruwPfyEPpUdDzX

Score
10/10

Malware Config

Targets

    • Target

      99d25dcb4e5dc2d4e93bebf01d84e947_JaffaCakes118

    • Size

      124KB

    • MD5

      99d25dcb4e5dc2d4e93bebf01d84e947

    • SHA1

      58c90e6e0d3d1e3217df4dbebfd806ca6e7181a9

    • SHA256

      506fa4b97cb81314aa929dee6349218e06e85fbc4f78469592e0a4b90eab17cd

    • SHA512

      765cfc0d2be57158cf7244c52beb41f790071aa77e855fddfdb095c23d8dd46a10bdc6cb6adfba5ea2f472cc69c8d8b36961f5c83065ea4dbf2682ab3754f076

    • SSDEEP

      1536:BfqhgyWB5upk8p84DzpM0ai8KGJYV31Gkr4jrxU/ruymEPfb+EPpUdDZNX:dqhgyvzyVzYVlPOrqruwPfyEPpUdDzX

    Score
    10/10
    • Emotet

      Emotet is a trojan that is primarily spread through spam emails.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

MITRE ATT&CK Matrix ATT&CK v13

Tasks