c68464d9a8146e06ca9cedaf86a650046fe21236bb43f5b36ef30b1ea0f20a81 | Triage

Sharing

General

Target

3f43485292fd9371f5c50e8e1c24ae2b_JaffaCakes118
Size

771KB
Sample

241013-l8vjnawblm
MD5

3f43485292fd9371f5c50e8e1c24ae2b
SHA1

819f00a0646d28eba86f0e811b55da7c6ff59b41
SHA256

c68464d9a8146e06ca9cedaf86a650046fe21236bb43f5b36ef30b1ea0f20a81
SHA512

de7609a5d607417849345cfbd686477ee6d6d1f2f696fd39ed5497fd9eeaff1909d82543341d0c025cd54167c79e991e897fdf13c51130e33519c17bbe44c1f5
SSDEEP

24576:vZX/MbxR7RFghfqyb10hJaothZ2/T6FBBB:hMNFfgNh/ofT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3f43485292fd9371f5c50e8e1c24ae2b_JaffaCakes118
- Size
  
  771KB
- MD5
  
  3f43485292fd9371f5c50e8e1c24ae2b
- SHA1
  
  819f00a0646d28eba86f0e811b55da7c6ff59b41
- SHA256
  
  c68464d9a8146e06ca9cedaf86a650046fe21236bb43f5b36ef30b1ea0f20a81
- SHA512
  
  de7609a5d607417849345cfbd686477ee6d6d1f2f696fd39ed5497fd9eeaff1909d82543341d0c025cd54167c79e991e897fdf13c51130e33519c17bbe44c1f5
- SSDEEP
  
  24576:vZX/MbxR7RFghfqyb10hJaothZ2/T6FBBB:hMNFfgNh/ofT
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2