575f198af455eec79da5c0ec6fdf50e6c6cc4078164cf2b1913327d73b528fc0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

57269a16125e2dafb7a818aa26d5d533_JaffaCakes118
Size

385KB
Sample

241018-nex4sswhjj
MD5

57269a16125e2dafb7a818aa26d5d533
SHA1

56dd470b9172cfed2fab615001da0c13a1a4acbd
SHA256

575f198af455eec79da5c0ec6fdf50e6c6cc4078164cf2b1913327d73b528fc0
SHA512

2c9a7c17a645b83b03e5c0ac3312a9e7e6cf0b17e6f3e8cc3bb86c0c4751f93a6e1816a0328aff966fc8d40481879b85312357d55ca0d124769787d4493771a9
SSDEEP

6144:slyd+u6vP0FxJB7ikxl22v2ezJrB3kyEKtyitNyIaWQT+nMfC8qqYqipdQ4vPCv5:ri87HXjd9B3rE0YIabTM5pdvOB

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  57269a16125e2dafb7a818aa26d5d533_JaffaCakes118
- Size
  
  385KB
- MD5
  
  57269a16125e2dafb7a818aa26d5d533
- SHA1
  
  56dd470b9172cfed2fab615001da0c13a1a4acbd
- SHA256
  
  575f198af455eec79da5c0ec6fdf50e6c6cc4078164cf2b1913327d73b528fc0
- SHA512
  
  2c9a7c17a645b83b03e5c0ac3312a9e7e6cf0b17e6f3e8cc3bb86c0c4751f93a6e1816a0328aff966fc8d40481879b85312357d55ca0d124769787d4493771a9
- SSDEEP
  
  6144:slyd+u6vP0FxJB7ikxl22v2ezJrB3kyEKtyitNyIaWQT+nMfC8qqYqipdQ4vPCv5:ri87HXjd9B3rE0YIabTM5pdvOB
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2