9143e860a1c7d0862cb675480b139cf15d016d5bc6b7d07105b79907c1280881 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fcd847423df3d5e766221777e2d1761e_JaffaCakes118
Size

358KB
Sample

240928-wkajpa1fmc
MD5

fcd847423df3d5e766221777e2d1761e
SHA1

58918c5139b57a8f97232f027a3606a437854c77
SHA256

9143e860a1c7d0862cb675480b139cf15d016d5bc6b7d07105b79907c1280881
SHA512

987281bcc756d1f5057eb76659757ff31d75f005489e542988063da4561d9e9ec70d0a8b6ed5fea8edc5d4a24015a52df2449c3c10c64db38c253e07a81107a7
SSDEEP

6144:b5ajYocF2idZecnl20lHRxp3g94pIZUPf1Bx1I3HD3lXTyqzf:NgcF3Z4mxxk42+zY3HblOif

Score

9^/10

discovery

Malware Config

Targets

- Target
  
  fcd847423df3d5e766221777e2d1761e_JaffaCakes118
- Size
  
  358KB
- MD5
  
  fcd847423df3d5e766221777e2d1761e
- SHA1
  
  58918c5139b57a8f97232f027a3606a437854c77
- SHA256
  
  9143e860a1c7d0862cb675480b139cf15d016d5bc6b7d07105b79907c1280881
- SHA512
  
  987281bcc756d1f5057eb76659757ff31d75f005489e542988063da4561d9e9ec70d0a8b6ed5fea8edc5d4a24015a52df2449c3c10c64db38c253e07a81107a7
- SSDEEP
  
  6144:b5ajYocF2idZecnl20lHRxp3g94pIZUPf1Bx1I3HD3lXTyqzf:NgcF3Z4mxxk42+zY3HblOif
Score

9^/10

discovery
- Detected Nirsoft tools
  Free utilities often used by attackers which can steal passwords, product keys, etc.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2