839e310a8e95882b43f219f33c8e2f64224e1f6482001cf1fc182f90621ef676 | Triage

Sharing

General

Target

eac9f2fc59f85992a3794daf632491b5_JaffaCakes118
Size

7KB
Sample

240919-hkprqawcqp
MD5

eac9f2fc59f85992a3794daf632491b5
SHA1

498c609260babaa6409748dcfb451af665cbb022
SHA256

839e310a8e95882b43f219f33c8e2f64224e1f6482001cf1fc182f90621ef676
SHA512

8aa2691caf661f81060fdb666f5cc11ba67142696a7b885ed2584137d195090dc2efe50da263de3e3145709730d6992e8d676234b7da3693fea35010816c7abe
SSDEEP

192:gkWWGbjnIJoy8BllEd1sb4pVS+dbbq44U9d5l8tD8GBthvgffp:4WcnGonBrETGcS+l8U9jl8tge+fp

Score

8^/10

execution

Malware Config

Targets

- Target
  
  MAY_PAY_561410_58903992.js
- Size
  
  35KB
- MD5
  
  c14ff347ba3a5d952c9e58866f05a92c
- SHA1
  
  866acc3b5c8b9f44d185a0514e3cbd34b913ece2
- SHA256
  
  9d322774893c0f550caaebfda131701c8ad4c81c95979003ee6620e564721eea
- SHA512
  
  f7383c3bdd788c7a09a454cd86843f7ae1e99c25f807cf1543f61412e7453d9bc0ca7aed40579245d68ad09c8a0e35879ce2faae0a8cf9cc212438f5a26099da
- SSDEEP
  
  768:sma3MrzZjjg/pNvkzhBdjvF9SkDe5mTGZMRQLJEM/pn:5+Mr1jjgzszndjvF9SkDZCZpl
Score

8^/10

execution
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2