104bca5ac8ca03e9a691f315b915e0a010dbe6842f2bb63d24a7cda167aee0f8 | Triage

Sharing

General

Target

d6b303cc4c0e341538be2a82c638bb9a_JaffaCakes118
Size

396KB
Sample

240909-t1eggazgng
MD5

d6b303cc4c0e341538be2a82c638bb9a
SHA1

775a7153b61aeb98fa6a0ce3ba1fbcc3de326def
SHA256

104bca5ac8ca03e9a691f315b915e0a010dbe6842f2bb63d24a7cda167aee0f8
SHA512

6ec51049a782135d5f84240eba06495b7629a803ce1d7ebd7bb54571aa92c0334be62d86b928a866ed0e38a51fb6dba94af6ecd083e0a05058e67bdb3d8bb36e
SSDEEP

6144:YagzIyinLORpO/GVXqcRC0ek/myhRgaMwsFJisSxSTAIX:YagzIFf/0XqgC0eDagaLxwdX

Score

6^/10

Malware Config

Targets

- Target
  
  d6b303cc4c0e341538be2a82c638bb9a_JaffaCakes118
- Size
  
  396KB
- MD5
  
  d6b303cc4c0e341538be2a82c638bb9a
- SHA1
  
  775a7153b61aeb98fa6a0ce3ba1fbcc3de326def
- SHA256
  
  104bca5ac8ca03e9a691f315b915e0a010dbe6842f2bb63d24a7cda167aee0f8
- SHA512
  
  6ec51049a782135d5f84240eba06495b7629a803ce1d7ebd7bb54571aa92c0334be62d86b928a866ed0e38a51fb6dba94af6ecd083e0a05058e67bdb3d8bb36e
- SSDEEP
  
  6144:YagzIyinLORpO/GVXqcRC0ek/myhRgaMwsFJisSxSTAIX:YagzIFf/0XqgC0eDagaLxwdX
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2