c1339b7ee017e962f3dde0055c9f31350ebcded4efe4251c376a7f568c2c9964 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d1e7e041f3a1bd2d582e4fc9c9fa6c5_JaffaCakes118
Size

113KB
Sample

240719-wy336atenp
MD5

5d1e7e041f3a1bd2d582e4fc9c9fa6c5
SHA1

6fec2e66fc5407ec73e4797a76bb06f03ba7a5fa
SHA256

c1339b7ee017e962f3dde0055c9f31350ebcded4efe4251c376a7f568c2c9964
SHA512

5b6375fe5f0fd405c9a440d67befaad722e495ed7a5fba36ee38f8c5d78d1ef36da356c36e890b5ae14c1cb923db5168aa15afe4601d170afae3cb65c97e5d7c
SSDEEP

3072:waOh/SSodbnckaYJNQMcZf+fxCqwH3+tVNrNDMN90:mh/SSokNEj

Score

6^/10

Malware Config

Targets

- Target
  
  5d1e7e041f3a1bd2d582e4fc9c9fa6c5_JaffaCakes118
- Size
  
  113KB
- MD5
  
  5d1e7e041f3a1bd2d582e4fc9c9fa6c5
- SHA1
  
  6fec2e66fc5407ec73e4797a76bb06f03ba7a5fa
- SHA256
  
  c1339b7ee017e962f3dde0055c9f31350ebcded4efe4251c376a7f568c2c9964
- SHA512
  
  5b6375fe5f0fd405c9a440d67befaad722e495ed7a5fba36ee38f8c5d78d1ef36da356c36e890b5ae14c1cb923db5168aa15afe4601d170afae3cb65c97e5d7c
- SSDEEP
  
  3072:waOh/SSodbnckaYJNQMcZf+fxCqwH3+tVNrNDMN90:mh/SSokNEj
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2