Overview

overview

8

Static

static

1

c317e891af...18.rtf

windows7-x64

8

c317e891af...18.rtf

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c317e891afb3c78811b17089729d2f66_JaffaCakes118

  • Size

    68KB

  • Sample

    240826-qqqvzaxcpn

  • MD5

    c317e891afb3c78811b17089729d2f66

  • SHA1

    2d8c26a1b70615e15c882a9a4c43091b61f499f1

  • SHA256

    15c24c6c2832fef3ae6d2cb5b823f5402388007e941b26ca354ea3080939230c

  • SHA512

    8c511fb0b6abd85f7092801c6912422fd2df346a620bb651bcc8ed95d6698814ca8022fef4f392b7d5c5c54c3e95f2e051ae7aa09215c66bd5b263bbeab61369

  • SSDEEP

    1536:7UX3fathx6438Kk6A2VtQSZS8M5zCyE+qwFwl2VoZqsukY1AQjOK5avdX0aW:7o3fOhx3fk6LVtQSZS8A2yJqwFwlZqsw

Score
8/10
discovery

Malware Config

Targets

    • Target

      c317e891afb3c78811b17089729d2f66_JaffaCakes118

    • Size

      68KB

    • MD5

      c317e891afb3c78811b17089729d2f66

    • SHA1

      2d8c26a1b70615e15c882a9a4c43091b61f499f1

    • SHA256

      15c24c6c2832fef3ae6d2cb5b823f5402388007e941b26ca354ea3080939230c

    • SHA512

      8c511fb0b6abd85f7092801c6912422fd2df346a620bb651bcc8ed95d6698814ca8022fef4f392b7d5c5c54c3e95f2e051ae7aa09215c66bd5b263bbeab61369

    • SSDEEP

      1536:7UX3fathx6438Kk6A2VtQSZS8M5zCyE+qwFwl2VoZqsukY1AQjOK5avdX0aW:7o3fOhx3fk6LVtQSZS8A2yJqwFwlZqsw

    Score
    8/10
    discovery

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Exploitation for Client Execution

1
T1203

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1
T1614

System Language Discovery

1
T1614.001

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks