8f82696c70282675669614cf3a5670d2bd919d6a641b67b1dced2f4589036f0a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5cb14e5ffc873fda92f61c0fe184d4ee_JaffaCakes118
Size

45KB
Sample

240719-trx78azbjk
MD5

5cb14e5ffc873fda92f61c0fe184d4ee
SHA1

8b6fa392f3f3b4bbb2b290ba68e57cddccdb2a81
SHA256

8f82696c70282675669614cf3a5670d2bd919d6a641b67b1dced2f4589036f0a
SHA512

090c8a61f5ab20603e69e274c2d6d4ab18b0cd8118791249ad1c1a0b85f9b8134ce6c3aafbb73c69e7c210415ea66fcc1090932b266b69c6adf674d862b42f28
SSDEEP

768:bK7916pHyZSIIJtEvpCjwRkV62XPugfd:bKT+HuShjEJ2fnfd

Score

10^/10

persistence

Malware Config

Extracted

Credentials

Protocol: smtp
Host:
smtp.gmail.com
Port:
587
Username:
[email protected]
Password:
LOL12345

Targets

- Target
  
  5cb14e5ffc873fda92f61c0fe184d4ee_JaffaCakes118
- Size
  
  45KB
- MD5
  
  5cb14e5ffc873fda92f61c0fe184d4ee
- SHA1
  
  8b6fa392f3f3b4bbb2b290ba68e57cddccdb2a81
- SHA256
  
  8f82696c70282675669614cf3a5670d2bd919d6a641b67b1dced2f4589036f0a
- SHA512
  
  090c8a61f5ab20603e69e274c2d6d4ab18b0cd8118791249ad1c1a0b85f9b8134ce6c3aafbb73c69e7c210415ea66fcc1090932b266b69c6adf674d862b42f28
- SSDEEP
  
  768:bK7916pHyZSIIJtEvpCjwRkV62XPugfd:bKT+HuShjEJ2fnfd
Score

10^/10

persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2