General

  • Target

    c07af0c4fd0a0ff8bb26915d43aa82d0_JaffaCakes118

  • Size

    40KB

  • Sample

    240825-lwjxdszdpr

  • MD5

    c07af0c4fd0a0ff8bb26915d43aa82d0

  • SHA1

    9235fb96c5777b0592b0ab4ca9c35ac1cc15cea2

  • SHA256

    661ded9786c8977c8cdd924c5d13eb65ff3712b0ced3cf5b457e06f2f6537616

  • SHA512

    82db6750883f7ae1be7f077f366ff52d931ccac280152cda26f9353af5b51266d1acd488d539e770aacbb9d8f833b0465db4da745c6988684556e7e28635ff34

  • SSDEEP

    768:JqvumNbHxgEFe1Ah34hC6qwrv2Nr8HJKauHpkV/ZoijO0cq2EsbI:J0NbRgEF8g4HONrS0auHpk9ZogO0nhss

Score
7/10

Malware Config

Targets

    • Target

      c07af0c4fd0a0ff8bb26915d43aa82d0_JaffaCakes118

    • Size

      40KB

    • MD5

      c07af0c4fd0a0ff8bb26915d43aa82d0

    • SHA1

      9235fb96c5777b0592b0ab4ca9c35ac1cc15cea2

    • SHA256

      661ded9786c8977c8cdd924c5d13eb65ff3712b0ced3cf5b457e06f2f6537616

    • SHA512

      82db6750883f7ae1be7f077f366ff52d931ccac280152cda26f9353af5b51266d1acd488d539e770aacbb9d8f833b0465db4da745c6988684556e7e28635ff34

    • SSDEEP

      768:JqvumNbHxgEFe1Ah34hC6qwrv2Nr8HJKauHpkV/ZoijO0cq2EsbI:J0NbRgEF8g4HONrS0auHpk9ZogO0nhss

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks