e447ff748e696a0d89305b97629e48b3ac6e26830bcc8c039ee4a86723fbd947 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36ccd1d869afd8ced0d943033ec43e1b_JaffaCakes118
Size

80KB
Sample

240710-3al83axhmf
MD5

36ccd1d869afd8ced0d943033ec43e1b
SHA1

e1199b45cb58ce7135a4373a604f7117bb3ed713
SHA256

e447ff748e696a0d89305b97629e48b3ac6e26830bcc8c039ee4a86723fbd947
SHA512

c928ea5cf871629ebd8ccc873f73cd4cb124ceab25564bfaf06bbba97237a058ef36a5bab9b676decb24427c3c83e1a567df2d4d9c3621d9c5ddda2e94b45bd4
SSDEEP

1536:/UiudwBp3CyM8HsWmJlOg6YFcGDHYmaDr/CnNKkJq:/RnLy8MWmJYgF6+HY/LOMKq

Score

5^/10

Malware Config

Targets

- Target
  
  36ccd1d869afd8ced0d943033ec43e1b_JaffaCakes118
- Size
  
  80KB
- MD5
  
  36ccd1d869afd8ced0d943033ec43e1b
- SHA1
  
  e1199b45cb58ce7135a4373a604f7117bb3ed713
- SHA256
  
  e447ff748e696a0d89305b97629e48b3ac6e26830bcc8c039ee4a86723fbd947
- SHA512
  
  c928ea5cf871629ebd8ccc873f73cd4cb124ceab25564bfaf06bbba97237a058ef36a5bab9b676decb24427c3c83e1a567df2d4d9c3621d9c5ddda2e94b45bd4
- SSDEEP
  
  1536:/UiudwBp3CyM8HsWmJlOg6YFcGDHYmaDr/CnNKkJq:/RnLy8MWmJYgF6+HY/LOMKq
Score

3^/10
behavioral1 behavioral2
- Target
  
  .rsrc/2052/8005/7801
- Size
  
  33KB
- MD5
  
  8f419a94ba3bc14668419c90c4b7972e
- SHA1
  
  c4a10e160fbb031cc4f532d8c17847ae044629e9
- SHA256
  
  d31ffbfebe91d2f9be834270ba8e11767b72d5be884a4b44d812bc172133af8d
- SHA512
  
  61e03c36421427ab65075534fb663e6afad67a379357b3e451e5fe2987dea25114081d0b087d37d9614c4a0f3e3ad8346c5211f1d2deef30cad3ea114f569595
- SSDEEP
  
  384:8JVSgUsQYHrWgHa3KQd7fboLPSQT3bjOq79+wIWCHhpP82PolnqitGio8v4NIcJc:8GgUHYmaDrbjBJ+wIWCnNPinFtGiRcJ
Score

5^/10
- Drops file in System32 directory
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4