8a5adf966e8c954fe9edbe79dad2a7ad4d0db6ed8279c8f7b60379b6541dd41b | Triage

Sharing

General

Target

2f18b172fef40339de3e77a40af5935e_JaffaCakes118
Size

54KB
Sample

241009-ly7q8sxarl
MD5

2f18b172fef40339de3e77a40af5935e
SHA1

3a5b52212b3dfd7069dcc28c5209ebd848dda094
SHA256

8a5adf966e8c954fe9edbe79dad2a7ad4d0db6ed8279c8f7b60379b6541dd41b
SHA512

e1d73f49e4cb8424ada56441220e71744760cabf36da54c0ad24c9eb16ccf9b608146be368744bd318501731fbbebf63ff37698516a30e714a795022dee41813
SSDEEP

1536:inzwW13qUFvD8KBW/V+uqbykJpxC9zepoaZpjXGhfAPf:qzwI35l8KBsnWk9ey0Ehf

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  2f18b172fef40339de3e77a40af5935e_JaffaCakes118
- Size
  
  54KB
- MD5
  
  2f18b172fef40339de3e77a40af5935e
- SHA1
  
  3a5b52212b3dfd7069dcc28c5209ebd848dda094
- SHA256
  
  8a5adf966e8c954fe9edbe79dad2a7ad4d0db6ed8279c8f7b60379b6541dd41b
- SHA512
  
  e1d73f49e4cb8424ada56441220e71744760cabf36da54c0ad24c9eb16ccf9b608146be368744bd318501731fbbebf63ff37698516a30e714a795022dee41813
- SSDEEP
  
  1536:inzwW13qUFvD8KBW/V+uqbykJpxC9zepoaZpjXGhfAPf:qzwI35l8KBsnWk9ey0Ehf
Score

6^/10

discovery
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2