085590f0e60d121dd7659452790071277e0bff2fd45565bdb3d6f6262b7dff2d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2608a6d72954c33da5865846324ee40_JaffaCakes118
Size

196KB
Sample

240817-nqjesatblf
MD5

a2608a6d72954c33da5865846324ee40
SHA1

c159c8f6ea95104a4c62a60ae53d8a6467747d1a
SHA256

085590f0e60d121dd7659452790071277e0bff2fd45565bdb3d6f6262b7dff2d
SHA512

059532b966533b53e3d7c5c9dff27d4b8c936d0f6bec0ec19dd2ce96d57f0010c7a42ce32a49527c73b78f3a2f6d983edbc6bcbded37c89a9d259b76326ffc6e
SSDEEP

3072:yb91VAoAt3A7AZueCXGB7jTwB3vbLwq4M4vRQZYtKloIF/yQodihJKfvQuJ4dbGv:e91VAoAt3A7AZueCXGVd

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  a2608a6d72954c33da5865846324ee40_JaffaCakes118
- Size
  
  196KB
- MD5
  
  a2608a6d72954c33da5865846324ee40
- SHA1
  
  c159c8f6ea95104a4c62a60ae53d8a6467747d1a
- SHA256
  
  085590f0e60d121dd7659452790071277e0bff2fd45565bdb3d6f6262b7dff2d
- SHA512
  
  059532b966533b53e3d7c5c9dff27d4b8c936d0f6bec0ec19dd2ce96d57f0010c7a42ce32a49527c73b78f3a2f6d983edbc6bcbded37c89a9d259b76326ffc6e
- SSDEEP
  
  3072:yb91VAoAt3A7AZueCXGB7jTwB3vbLwq4M4vRQZYtKloIF/yQodihJKfvQuJ4dbGv:e91VAoAt3A7AZueCXGVd
Score

6^/10

discovery
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2