3f7360911b687db5c2164deb191814f2b103f3f630ca69225e58a22ff158aacf | Triage

Sharing

General

Target

JaffaCakes118_eff964a2ea53e3aac94d663cd85665db
Size

17KB
Sample

250212-nrgycazkgy
MD5

eff964a2ea53e3aac94d663cd85665db
SHA1

78bc53db689256a78f765728a751efc37f659ff2
SHA256

3f7360911b687db5c2164deb191814f2b103f3f630ca69225e58a22ff158aacf
SHA512

1f4ad3464017f7292058195177c98efd25c113e238d317d682b14d8cb7c5bfddd4388154f822c5f513cd16d26eb396941bd6d568b167e05258d5306186097b0b
SSDEEP

96:ZFzYBh8i7sjO/9bBp0fsxlxXhRMiIi/UCFKYVvVoO/TLLUai+SR+Y+F+4+B+8+xv:fzK1xPhRbIlxxAqtor1Rc1Y8Be

Score

10^/10

google discovery phishing

Malware Config

Targets

- Target
  
  JaffaCakes118_eff964a2ea53e3aac94d663cd85665db
- Size
  
  17KB
- MD5
  
  eff964a2ea53e3aac94d663cd85665db
- SHA1
  
  78bc53db689256a78f765728a751efc37f659ff2
- SHA256
  
  3f7360911b687db5c2164deb191814f2b103f3f630ca69225e58a22ff158aacf
- SHA512
  
  1f4ad3464017f7292058195177c98efd25c113e238d317d682b14d8cb7c5bfddd4388154f822c5f513cd16d26eb396941bd6d568b167e05258d5306186097b0b
- SSDEEP
  
  96:ZFzYBh8i7sjO/9bBp0fsxlxXhRMiIi/UCFKYVvVoO/TLLUai+SR+Y+F+4+B+8+xv:fzK1xPhRbIlxxAqtor1Rc1Y8Be
Score

10^/10

google discovery phishing
- Detected google phishing page
  phishing google
- Downloads MZ/PE file
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

googlediscoveryphishing

behavioral2