d8ed1e4fedf3d4d7fcfe13596df07253ee4f084722940a2f19bdd6c2ce90d380 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

320388775a02869ae2dc5c162b3fa112_JaffaCakes118
Size

171KB
Sample

240709-z5vbdaxhqa
MD5

320388775a02869ae2dc5c162b3fa112
SHA1

74dbcb2c8a0b65c885ef8208f25a8b792ef60581
SHA256

d8ed1e4fedf3d4d7fcfe13596df07253ee4f084722940a2f19bdd6c2ce90d380
SHA512

65ae4accf1c0116935ea13b72e1c0485a84e43283ddd3a780dc1b8a6b62c2dc1c78233995e66283912c45395f6715adf056093bc81edd338dcb36b8128434903
SSDEEP

3072:8EpI/23fuWBf/GtCgmaMLrAcVFDH6Ghahs0AORUe:XIfxtxQPeG8hLT5

Score

6^/10

Malware Config

Targets

- Target
  
  320388775a02869ae2dc5c162b3fa112_JaffaCakes118
- Size
  
  171KB
- MD5
  
  320388775a02869ae2dc5c162b3fa112
- SHA1
  
  74dbcb2c8a0b65c885ef8208f25a8b792ef60581
- SHA256
  
  d8ed1e4fedf3d4d7fcfe13596df07253ee4f084722940a2f19bdd6c2ce90d380
- SHA512
  
  65ae4accf1c0116935ea13b72e1c0485a84e43283ddd3a780dc1b8a6b62c2dc1c78233995e66283912c45395f6715adf056093bc81edd338dcb36b8128434903
- SSDEEP
  
  3072:8EpI/23fuWBf/GtCgmaMLrAcVFDH6Ghahs0AORUe:XIfxtxQPeG8hLT5
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2