0451d559454fa98acd4e5b19c80b5058e6100d19c4e9f5375cb984c79d20d4aa | Triage

Sharing

General

Target

d0de9692a512dad892206e8e9ce1abd7_JaffaCakes118
Size

97KB
Sample

240907-cqeaaazerm
MD5

d0de9692a512dad892206e8e9ce1abd7
SHA1

346b0ae4be2a0cc20e5add9c6e7adcf3c881d422
SHA256

0451d559454fa98acd4e5b19c80b5058e6100d19c4e9f5375cb984c79d20d4aa
SHA512

9bfa5a8eaab25b7f17609e79857b6643a6e5f3a167956cf180db1d4b6ff8da927d16de99e31365a871dfa570be112d5951ad4e81c981e2c076b13535a9814f78
SSDEEP

3072:nkpk/xOprQO++OMFzrPYTTo65Ht8aNjfROr2:nkpk/xOprQO+/5Ht8aNj1

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  d0de9692a512dad892206e8e9ce1abd7_JaffaCakes118
- Size
  
  97KB
- MD5
  
  d0de9692a512dad892206e8e9ce1abd7
- SHA1
  
  346b0ae4be2a0cc20e5add9c6e7adcf3c881d422
- SHA256
  
  0451d559454fa98acd4e5b19c80b5058e6100d19c4e9f5375cb984c79d20d4aa
- SHA512
  
  9bfa5a8eaab25b7f17609e79857b6643a6e5f3a167956cf180db1d4b6ff8da927d16de99e31365a871dfa570be112d5951ad4e81c981e2c076b13535a9814f78
- SSDEEP
  
  3072:nkpk/xOprQO++OMFzrPYTTo65Ht8aNjfROr2:nkpk/xOprQO+/5Ht8aNj1
Score

6^/10

discovery
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2