f4158e74c58ad1fe4f3b409bff1256845ee67692e01337325e91ea94c1e0c3e0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a0c76c63fe3da2836f84fdf5781a81c2_JaffaCakes118
Size

123KB
Sample

240817-ccdftstfrp
MD5

a0c76c63fe3da2836f84fdf5781a81c2
SHA1

f7b249b552184feebb711c17d5198976848aa806
SHA256

f4158e74c58ad1fe4f3b409bff1256845ee67692e01337325e91ea94c1e0c3e0
SHA512

b30dcd56adde8b7b42ed107135472958348341b7d1d565901d2313486d20e124d5729a405c19020fcfadc92c3798a0fb2c8d4639232a8d2542dc25bd0b93137a
SSDEEP

3072:6klcyklckklc7uG/bI+3akcGklcPEijZeqhwEijZeqLbnBceMIVhKiZPPfy:6klcyklckklc7uG/bI+3akcGklcPEij5

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  a0c76c63fe3da2836f84fdf5781a81c2_JaffaCakes118
- Size
  
  123KB
- MD5
  
  a0c76c63fe3da2836f84fdf5781a81c2
- SHA1
  
  f7b249b552184feebb711c17d5198976848aa806
- SHA256
  
  f4158e74c58ad1fe4f3b409bff1256845ee67692e01337325e91ea94c1e0c3e0
- SHA512
  
  b30dcd56adde8b7b42ed107135472958348341b7d1d565901d2313486d20e124d5729a405c19020fcfadc92c3798a0fb2c8d4639232a8d2542dc25bd0b93137a
- SSDEEP
  
  3072:6klcyklckklc7uG/bI+3akcGklcPEijZeqhwEijZeqLbnBceMIVhKiZPPfy:6klcyklckklc7uG/bI+3akcGklcPEij5
Score

6^/10

discovery
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2