darknexus | 82cc998cb1e98167a9ea085f2be4f72b140cd37f330fd2b3c25737ae4d1643c9 | Triage

Sharing

General

Target

15811ac5a28027aea3c97266d604bac5_JaffaCakes118
Size

129KB
Sample

241005-a2bbnavgll
MD5

15811ac5a28027aea3c97266d604bac5
SHA1

9bf7875fb8ab96e7f24af360010171b4f6e22ca6
SHA256

82cc998cb1e98167a9ea085f2be4f72b140cd37f330fd2b3c25737ae4d1643c9
SHA512

39ef8e26b210a512fe0cb9c5a192d3bd6e253575910b3724a2987c5ac5adc1ac255de0325023318c3001692aee756c8c2a0ed7c02ab44bac01bfe91b26f90416
SSDEEP

3072:e2WUiqt5yspNrUfnfyfEufAfzjcQLWhwUPqdrX3tM/9f8cG5:iqJfEu4LjcQLWmUerX9M/9kcM

Score

10^/10

darknexus discovery

Malware Config

Targets

- Target
  
  15811ac5a28027aea3c97266d604bac5_JaffaCakes118
- Size
  
  129KB
- MD5
  
  15811ac5a28027aea3c97266d604bac5
- SHA1
  
  9bf7875fb8ab96e7f24af360010171b4f6e22ca6
- SHA256
  
  82cc998cb1e98167a9ea085f2be4f72b140cd37f330fd2b3c25737ae4d1643c9
- SHA512
  
  39ef8e26b210a512fe0cb9c5a192d3bd6e253575910b3724a2987c5ac5adc1ac255de0325023318c3001692aee756c8c2a0ed7c02ab44bac01bfe91b26f90416
- SSDEEP
  
  3072:e2WUiqt5yspNrUfnfyfEufAfzjcQLWhwUPqdrX3tM/9f8cG5:iqJfEu4LjcQLWmUerX9M/9kcM
Score

9^/10

discovery
- Contacts a large (73978) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1