3a7b033a7d81a3250dcebee1590a74e09d328314e087d5615aab318655ea358f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5f1824a77a9d84fa953ac302a881f20f_JaffaCakes118
Size

22KB
Sample

240720-fjgcvaxbqm
MD5

5f1824a77a9d84fa953ac302a881f20f
SHA1

eb472a39e2aa8205deab978b5d448a1f797218a2
SHA256

3a7b033a7d81a3250dcebee1590a74e09d328314e087d5615aab318655ea358f
SHA512

b21a5ebc13400382b60d68b873972c180b5ff40ba35a37ebb3ce50f4a7e4f02eb77feeff89990b6341b4e59ee70015b11136a60616583ff26092565bf8334242
SSDEEP

192:NwFc9GvkS/+O0tamijsRZ+OeP1oynE1dFcBC4C4dtxr:NB33iwRa1G1TcI4Ddtd

Score

10^/10

Malware Config

Extracted

Language

hta

Source

URLs

hta.dropper

http://eonlineseoul.newssupply.net/wscnify.exe

Targets

- Target
  
  5f1824a77a9d84fa953ac302a881f20f_JaffaCakes118
- Size
  
  22KB
- MD5
  
  5f1824a77a9d84fa953ac302a881f20f
- SHA1
  
  eb472a39e2aa8205deab978b5d448a1f797218a2
- SHA256
  
  3a7b033a7d81a3250dcebee1590a74e09d328314e087d5615aab318655ea358f
- SHA512
  
  b21a5ebc13400382b60d68b873972c180b5ff40ba35a37ebb3ce50f4a7e4f02eb77feeff89990b6341b4e59ee70015b11136a60616583ff26092565bf8334242
- SSDEEP
  
  192:NwFc9GvkS/+O0tamijsRZ+OeP1oynE1dFcBC4C4dtxr:NB33iwRa1G1TcI4Ddtd
Score

10^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2