f9d4b01c726a5e450ca9c151b93fc361ee74c6ea93c7c59211e5ae55c46ddfb4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a817d1db1aad0bafaa5a05297f22eb61_JaffaCakes118
Size

185KB
Sample

240614-fqspfszdrp
MD5

a817d1db1aad0bafaa5a05297f22eb61
SHA1

97e19cd9536be90c29991ce921ba15a839b6af0b
SHA256

f9d4b01c726a5e450ca9c151b93fc361ee74c6ea93c7c59211e5ae55c46ddfb4
SHA512

f0bf38e7c6c9a2f4fd2bf514d33a7ef5fa6fb48123100ec76fc0d116360792bbf84786e195dd8fa10cd11065cd506cadfc2a57a56a47174378cb0c5a944c3875
SSDEEP

3072:DaC5odNhqW6HDfN2UOcL3g04YI0fELEQvEj1vIlRb7e26Tmji2icu8lQvoK2EN+5:b7mZN

Score

6^/10

Malware Config

Targets

- Target
  
  a817d1db1aad0bafaa5a05297f22eb61_JaffaCakes118
- Size
  
  185KB
- MD5
  
  a817d1db1aad0bafaa5a05297f22eb61
- SHA1
  
  97e19cd9536be90c29991ce921ba15a839b6af0b
- SHA256
  
  f9d4b01c726a5e450ca9c151b93fc361ee74c6ea93c7c59211e5ae55c46ddfb4
- SHA512
  
  f0bf38e7c6c9a2f4fd2bf514d33a7ef5fa6fb48123100ec76fc0d116360792bbf84786e195dd8fa10cd11065cd506cadfc2a57a56a47174378cb0c5a944c3875
- SSDEEP
  
  3072:DaC5odNhqW6HDfN2UOcL3g04YI0fELEQvEj1vIlRb7e26Tmji2icu8lQvoK2EN+5:b7mZN
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2