bfc8029c2247a819c238a01f6474eb107529f6abdcba3341423ac39c11f03c0e | Triage

Sharing

General

Target

26fe9001cc80dcf126cd3ce668149df9_JaffaCakes118
Size

771KB
Sample

241008-3dendssbqa
MD5

26fe9001cc80dcf126cd3ce668149df9
SHA1

3ae2c20d5fe04bd9ae2ead2a68c2d88106574daf
SHA256

bfc8029c2247a819c238a01f6474eb107529f6abdcba3341423ac39c11f03c0e
SHA512

4c5a76eb9d05d7d7d4a24c3dbc3a63b4a1967a21ea5d61e9c55d3c28ca002789bccc812152a9ba192a03cdddaecb6450dcb581208a35e1dc9315fa6891649c8e
SSDEEP

12288:/yI57M4OJkXNppm4Qp9VMYgHjCGXyqb10VHmDXTuFaa2AtyGTKOF25ZoJJyhRgeG:/yI9p9Qp9cHNtb10hJaothZ2/T6FBBB

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  26fe9001cc80dcf126cd3ce668149df9_JaffaCakes118
- Size
  
  771KB
- MD5
  
  26fe9001cc80dcf126cd3ce668149df9
- SHA1
  
  3ae2c20d5fe04bd9ae2ead2a68c2d88106574daf
- SHA256
  
  bfc8029c2247a819c238a01f6474eb107529f6abdcba3341423ac39c11f03c0e
- SHA512
  
  4c5a76eb9d05d7d7d4a24c3dbc3a63b4a1967a21ea5d61e9c55d3c28ca002789bccc812152a9ba192a03cdddaecb6450dcb581208a35e1dc9315fa6891649c8e
- SSDEEP
  
  12288:/yI57M4OJkXNppm4Qp9VMYgHjCGXyqb10VHmDXTuFaa2AtyGTKOF25ZoJJyhRgeG:/yI9p9Qp9cHNtb10hJaothZ2/T6FBBB
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2