f9557debb320ca27d5c2db8fd2b012360d5ade00e4318b78fe083704c3ede0fe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a39ed0b830c5b9afdf8756ca9b178bee_JaffaCakes118
Size

7KB
Sample

240613-dk6m1swblq
MD5

a39ed0b830c5b9afdf8756ca9b178bee
SHA1

76e3931428dba79669e2608476c7b9adb18e7cc6
SHA256

f9557debb320ca27d5c2db8fd2b012360d5ade00e4318b78fe083704c3ede0fe
SHA512

c4d08f4185bc5df559b9300232be053d3e08a7f867e66759778e74ef73193b155c0bd91694f6d1c592c4ea241950ac9871fd265cacb4a37acd8b304d7c413df4
SSDEEP

96:xhDBU9ZsETvsxblLSP8+Uqngf02Cy9f5hLcFKfgfdlfBzNt:xcoET1P8+UqlwfgFlfD

Score

6^/10

Malware Config

Targets

- Target
  
  a39ed0b830c5b9afdf8756ca9b178bee_JaffaCakes118
- Size
  
  7KB
- MD5
  
  a39ed0b830c5b9afdf8756ca9b178bee
- SHA1
  
  76e3931428dba79669e2608476c7b9adb18e7cc6
- SHA256
  
  f9557debb320ca27d5c2db8fd2b012360d5ade00e4318b78fe083704c3ede0fe
- SHA512
  
  c4d08f4185bc5df559b9300232be053d3e08a7f867e66759778e74ef73193b155c0bd91694f6d1c592c4ea241950ac9871fd265cacb4a37acd8b304d7c413df4
- SSDEEP
  
  96:xhDBU9ZsETvsxblLSP8+Uqngf02Cy9f5hLcFKfgfdlfBzNt:xcoET1P8+UqlwfgFlfD
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2