6fd3617648e673ac4ceff30265ac0828fa607d40c54c1155556b5d6c88fa06d0 | Triage

Sharing

General

Target

d485bc23b59f0b945dadadca310a0c64_JaffaCakes118
Size

140KB
Sample

240908-raq2gasbpg
MD5

d485bc23b59f0b945dadadca310a0c64
SHA1

e4f05de66b0b842dd896300a11d3aacdee25be6d
SHA256

6fd3617648e673ac4ceff30265ac0828fa607d40c54c1155556b5d6c88fa06d0
SHA512

21dad196516d6ff3edb5a64602cc06b19e6f6e80208cb14512670d2e2747f88666353cf77a145ee895c77840283f4f6dcc97d35734ac39e874ce6c375fe54936
SSDEEP

3072:X+VmRLY8k4JB6DQ4cXmNRSpFQ/MxT/7vgL9qKeLB+sj+9l7:YmRLY8k4JFpXmNRi76

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  d485bc23b59f0b945dadadca310a0c64_JaffaCakes118
- Size
  
  140KB
- MD5
  
  d485bc23b59f0b945dadadca310a0c64
- SHA1
  
  e4f05de66b0b842dd896300a11d3aacdee25be6d
- SHA256
  
  6fd3617648e673ac4ceff30265ac0828fa607d40c54c1155556b5d6c88fa06d0
- SHA512
  
  21dad196516d6ff3edb5a64602cc06b19e6f6e80208cb14512670d2e2747f88666353cf77a145ee895c77840283f4f6dcc97d35734ac39e874ce6c375fe54936
- SSDEEP
  
  3072:X+VmRLY8k4JB6DQ4cXmNRSpFQ/MxT/7vgL9qKeLB+sj+9l7:YmRLY8k4JFpXmNRi76
Score

6^/10

discovery
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2