a05034c0ebc40ce9f7ec36f8461911bb23d9255179154e5b6a932837923e71be | Triage

Sharing

General

Target

732303dee131a341a9a9a1383dd7ddf0_JaffaCakes118
Size

3.5MB
Sample

240726-jfg2ravaqr
MD5

732303dee131a341a9a9a1383dd7ddf0
SHA1

f230af5b99b9bc93ad861d330caeef6f16c021a9
SHA256

a05034c0ebc40ce9f7ec36f8461911bb23d9255179154e5b6a932837923e71be
SHA512

120b911ef19b6b5621757b705eb45101763423dc7610aa694a6000b1a52d21c0db885a6ddd69bf9f7a64614ce522050e7a2076145c47794a50ac3a70a9f350f6
SSDEEP

49152:HelnQLaNEgWvkdr9sBGuPnIWRy3PseYtyWygfoGJo0grk8iggWvkdr9sBGuPnIWp:HENe03F2bdod0grWK03F2b

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  732303dee131a341a9a9a1383dd7ddf0_JaffaCakes118
- Size
  
  3.5MB
- MD5
  
  732303dee131a341a9a9a1383dd7ddf0
- SHA1
  
  f230af5b99b9bc93ad861d330caeef6f16c021a9
- SHA256
  
  a05034c0ebc40ce9f7ec36f8461911bb23d9255179154e5b6a932837923e71be
- SHA512
  
  120b911ef19b6b5621757b705eb45101763423dc7610aa694a6000b1a52d21c0db885a6ddd69bf9f7a64614ce522050e7a2076145c47794a50ac3a70a9f350f6
- SSDEEP
  
  49152:HelnQLaNEgWvkdr9sBGuPnIWRy3PseYtyWygfoGJo0grk8iggWvkdr9sBGuPnIWp:HENe03F2bdod0grWK03F2b
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2