982fb703fdf69cce55afd0ca09e137c75a7d2e9cb4f4618c5ab2affad69e3264 | Triage

Sharing

General

Target

b4cf6e5b9d514f874c79ebb84b107d8a_JaffaCakes118
Size

152KB
Sample

240821-ylfhfaxdjc
MD5

b4cf6e5b9d514f874c79ebb84b107d8a
SHA1

822760a30f2a85559226774c2d12bc01c03eca8b
SHA256

982fb703fdf69cce55afd0ca09e137c75a7d2e9cb4f4618c5ab2affad69e3264
SHA512

abcd923aa972dd72f054b8ff4970e353aa6fee79b7ceeeffa07865dd4a0cd0001616462c25b0db79116c044764c2db24e26ab9b1100467790eb59752e6e18ec7
SSDEEP

3072:RD396xhMaKzde+WYHN7bIBV7WBUEd7CfzZxUFU:dEMaK5e+Wa7bIBVaBUk2ZxU

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  b4cf6e5b9d514f874c79ebb84b107d8a_JaffaCakes118
- Size
  
  152KB
- MD5
  
  b4cf6e5b9d514f874c79ebb84b107d8a
- SHA1
  
  822760a30f2a85559226774c2d12bc01c03eca8b
- SHA256
  
  982fb703fdf69cce55afd0ca09e137c75a7d2e9cb4f4618c5ab2affad69e3264
- SHA512
  
  abcd923aa972dd72f054b8ff4970e353aa6fee79b7ceeeffa07865dd4a0cd0001616462c25b0db79116c044764c2db24e26ab9b1100467790eb59752e6e18ec7
- SSDEEP
  
  3072:RD396xhMaKzde+WYHN7bIBV7WBUEd7CfzZxUFU:dEMaK5e+Wa7bIBVaBUk2ZxU
Score

8^/10

discovery
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2