c08b09aa14007ee57e94824b652bc9c217cb8ae3d6f676e20c04ae00e116aa2f | Triage

Sharing

General

Target

b5adb22df6f6fc2f535e00a75bf7beb7_JaffaCakes118
Size

328KB
Sample

240822-azx3msyhjh
MD5

b5adb22df6f6fc2f535e00a75bf7beb7
SHA1

8eaa0498e46458d94a35d8cfaec04fbac398a282
SHA256

c08b09aa14007ee57e94824b652bc9c217cb8ae3d6f676e20c04ae00e116aa2f
SHA512

48b274e1fc260816c8bdd5e1b4f3ce618d83fce9d16f20ac6ddd76bc6aa0377dc6640cdcecc867cc2c9aacb91b3c86b5d96c8d15e3e1fcc5d6e8e4896dca27af
SSDEEP

3072:nmmLSC+SavEzQfEzIBEm5mcDpVmikyUWVbvxM0vMUDc2tTBfwwQ:mbOQEIBqcKVhWNvxNva2tTBIwQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b5adb22df6f6fc2f535e00a75bf7beb7_JaffaCakes118
- Size
  
  328KB
- MD5
  
  b5adb22df6f6fc2f535e00a75bf7beb7
- SHA1
  
  8eaa0498e46458d94a35d8cfaec04fbac398a282
- SHA256
  
  c08b09aa14007ee57e94824b652bc9c217cb8ae3d6f676e20c04ae00e116aa2f
- SHA512
  
  48b274e1fc260816c8bdd5e1b4f3ce618d83fce9d16f20ac6ddd76bc6aa0377dc6640cdcecc867cc2c9aacb91b3c86b5d96c8d15e3e1fcc5d6e8e4896dca27af
- SSDEEP
  
  3072:nmmLSC+SavEzQfEzIBEm5mcDpVmikyUWVbvxM0vMUDc2tTBfwwQ:mbOQEIBqcKVhWNvxNva2tTBIwQ
Score

7^/10

discovery
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2