058ffb006515a31fc8d6537f3cd532d9d7ebe3d2bab90e8017bba612ba710830 | Triage

Sharing

General

Target

a5c3f40cdc7f134773f0c77e17489bfe_JaffaCakes118
Size

21KB
Sample

240818-hgescatdmm
MD5

a5c3f40cdc7f134773f0c77e17489bfe
SHA1

bf4cad3a7bf41f48b00bab2bbfdd32590a346b00
SHA256

058ffb006515a31fc8d6537f3cd532d9d7ebe3d2bab90e8017bba612ba710830
SHA512

de356b15f1983237473da0833516ae0cbfc57d53536a4b9a595c3a6542da97387e9d01f8d5478a01bc605fecac737dc4fa7e3eacfcd56efeb4b86ae1a7436dc3
SSDEEP

384:dynLd3Uz/HSqc6pItuwWSjqUE3n9KU3xy+V+qxmbw+gQ9XYT8:y92/HSqc6pItuwjFPUGxc49X

Score

10^/10

discovery

Malware Config

Extracted

Credentials

Protocol: ftp
Host:
31.170.160.77
Port:
21
Username:
a4245251
Password:
MUiBQg5R4

Targets

- Target
  
  a5c3f40cdc7f134773f0c77e17489bfe_JaffaCakes118
- Size
  
  21KB
- MD5
  
  a5c3f40cdc7f134773f0c77e17489bfe
- SHA1
  
  bf4cad3a7bf41f48b00bab2bbfdd32590a346b00
- SHA256
  
  058ffb006515a31fc8d6537f3cd532d9d7ebe3d2bab90e8017bba612ba710830
- SHA512
  
  de356b15f1983237473da0833516ae0cbfc57d53536a4b9a595c3a6542da97387e9d01f8d5478a01bc605fecac737dc4fa7e3eacfcd56efeb4b86ae1a7436dc3
- SSDEEP
  
  384:dynLd3Uz/HSqc6pItuwWSjqUE3n9KU3xy+V+qxmbw+gQ9XYT8:y92/HSqc6pItuwjFPUGxc49X
Score

10^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2