f2f1214343e5d65bf9abdee0a843a770ee6d8b88c569f7d3db9d76bd6e428668 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c8d4e31c652a347e924f4802bafaf6e7_JaffaCakes118
Size

323KB
Sample

240829-pt59dssake
MD5

c8d4e31c652a347e924f4802bafaf6e7
SHA1

c8177018e084db2d36f5b0a388c84592fd88d1b2
SHA256

f2f1214343e5d65bf9abdee0a843a770ee6d8b88c569f7d3db9d76bd6e428668
SHA512

703cf1933b57fcdc258f7a1d5c003917ac946d1162af07792a43d38cca6a071fbf8bf8f67b3c0328c95161464c438de432340640892a39825d245d5a282cbe3e
SSDEEP

3072:3kclrJklcc8baBWKFK7Hm/7Rcb5N4pfGlZ:3kclrJklcc8UvA

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  c8d4e31c652a347e924f4802bafaf6e7_JaffaCakes118
- Size
  
  323KB
- MD5
  
  c8d4e31c652a347e924f4802bafaf6e7
- SHA1
  
  c8177018e084db2d36f5b0a388c84592fd88d1b2
- SHA256
  
  f2f1214343e5d65bf9abdee0a843a770ee6d8b88c569f7d3db9d76bd6e428668
- SHA512
  
  703cf1933b57fcdc258f7a1d5c003917ac946d1162af07792a43d38cca6a071fbf8bf8f67b3c0328c95161464c438de432340640892a39825d245d5a282cbe3e
- SSDEEP
  
  3072:3kclrJklcc8baBWKFK7Hm/7Rcb5N4pfGlZ:3kclrJklcc8UvA
Score

6^/10

discovery
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2