General

  • Target

    JaffaCakes118_4a5c20288beee4a20187788f64d7086ba7d4a13edc7b48c6b0447ea2c3107a99

  • Size

    2.6MB

  • Sample

    241224-mf6lwsvma1

  • MD5

    7ab4d2ce325b1531caef94e9f9b565b3

  • SHA1

    79ec9190941c32eccda38bc0ce0d68763b55d041

  • SHA256

    4a5c20288beee4a20187788f64d7086ba7d4a13edc7b48c6b0447ea2c3107a99

  • SHA512

    34978117c866b555c9fb336142db856e5c46b8b75407828651e26f75f858577a6e684802af399866445fb394d3f701f0c14075340662ebef92b9a297397e295e

  • SSDEEP

    49152:uV+88b5GWFesEIfMK1T6JxAYJwHx1xLB/sK3pYV1+0U0Rm6a0miqlEEAEYW8tis7:uY88blF0SMK6xAqwRzN53pS0j0Pa0mi1

Score
10/10

Malware Config

Targets

    • Target

      563dd94590408df258e1b8364870432b47eb85eac99ee57d252114a726c863f3

    • Size

      2.9MB

    • MD5

      cb6633f84d025274ebfba538e8d1c372

    • SHA1

      098dd07b8ec18dbe2b8f957307aa344c690af16d

    • SHA256

      563dd94590408df258e1b8364870432b47eb85eac99ee57d252114a726c863f3

    • SHA512

      c94789933c37c0c2c746b42dae70f0b387e42972b7468c257d58f35327e9e5e46b72fbf893a369cb6cc87de6a88f56307815b1db420959ce4aa65e07aceddb6c

    • SSDEEP

      49152:3secMhf75LxU9wBUcIlKSeY36ZUdEcA5w5FeIY0gHGf8GlFSI4v1YojKr:cDMLEwBUVcx5UGdw5FeI1xf8GTSI4e

    Score
    10/10
    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

    • Asyncrat family

    • Async RAT payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks