2bf2f2a7a285c8f422f9ec8ccc0afbd1097a776cdc5fec4804102d28d831d5df | Triage

Sharing

General

Target

088bcfab4485f633eefdeafa30bb08be_JaffaCakes118
Size

360KB
Sample

240620-wt52ysvelm
MD5

088bcfab4485f633eefdeafa30bb08be
SHA1

4e6e7ec555850015c7dec89475e26a979dfd5339
SHA256

2bf2f2a7a285c8f422f9ec8ccc0afbd1097a776cdc5fec4804102d28d831d5df
SHA512

f443e8c44bc5e11bd8497ace826bf7fbf445a3b24b8cc88be72c876e75168b81ae08062308434e24432fcfa7676f5fe5e3bce3c69384b4ad57f74fb32a78be17
SSDEEP

6144:y7zJVF4Obrxqph4s8stCLJiKxTFdQ/dmd6lyhc4NOwMWIT6YIya/lAq49dl:GJ/4ObrApys7ReT3ydm/ODWIT6YLWAqq

Score

8^/10

motw phishing

Malware Config

Targets

- Target
  
  088bcfab4485f633eefdeafa30bb08be_JaffaCakes118
- Size
  
  360KB
- MD5
  
  088bcfab4485f633eefdeafa30bb08be
- SHA1
  
  4e6e7ec555850015c7dec89475e26a979dfd5339
- SHA256
  
  2bf2f2a7a285c8f422f9ec8ccc0afbd1097a776cdc5fec4804102d28d831d5df
- SHA512
  
  f443e8c44bc5e11bd8497ace826bf7fbf445a3b24b8cc88be72c876e75168b81ae08062308434e24432fcfa7676f5fe5e3bce3c69384b4ad57f74fb32a78be17
- SSDEEP
  
  6144:y7zJVF4Obrxqph4s8stCLJiKxTFdQ/dmd6lyhc4NOwMWIT6YIya/lAq49dl:GJ/4ObrApys7ReT3ydm/ODWIT6YLWAqq
Score

8^/10

motw phishing
- Drops file in Drivers directory
- Mark of the Web detected: This indicates that the page was originally saved or cloned.
  phishing motw
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2