42e7d0d6325157c35944e0cc4b2a07b3dece5b41bdb9e3be1557e7970e352c33 | Triage

Sharing

General

Target

eab1b26e06a91f5532d7e5382269c7d3_JaffaCakes118
Size

17KB
Sample

240919-gfc2paterl
MD5

eab1b26e06a91f5532d7e5382269c7d3
SHA1

bd01eb29b9a3678c6842a0142be9748733e22cdf
SHA256

42e7d0d6325157c35944e0cc4b2a07b3dece5b41bdb9e3be1557e7970e352c33
SHA512

59b09596a9ee90be6298523aa97439e3e9520206f439f2d6f0b13309f2e40ce3b3abddbe8d998220d1756dd167be3bf5ede97be80420653a0f2feaf8419e135c
SSDEEP

384:k03+e+z3FU5dHdBve+z3Fb4e+z3Fme+z3Fq:4f+fafAfA

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  eab1b26e06a91f5532d7e5382269c7d3_JaffaCakes118
- Size
  
  17KB
- MD5
  
  eab1b26e06a91f5532d7e5382269c7d3
- SHA1
  
  bd01eb29b9a3678c6842a0142be9748733e22cdf
- SHA256
  
  42e7d0d6325157c35944e0cc4b2a07b3dece5b41bdb9e3be1557e7970e352c33
- SHA512
  
  59b09596a9ee90be6298523aa97439e3e9520206f439f2d6f0b13309f2e40ce3b3abddbe8d998220d1756dd167be3bf5ede97be80420653a0f2feaf8419e135c
- SSDEEP
  
  384:k03+e+z3FU5dHdBve+z3Fb4e+z3Fme+z3Fq:4f+fafAfA
Score

8^/10

discovery
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2