c0116fda37624ac2760727035e28cf3d44b63f23e0149fde42f1fd9a35ac2db3 | Triage

Sharing

General

Target

02c23f945a76a845d222485aef57d008_JaffaCakes118
Size

581KB
Sample

240620-ex772ssgql
MD5

02c23f945a76a845d222485aef57d008
SHA1

08052bcd57bb03c5306ef317761d47f5a3a7f929
SHA256

c0116fda37624ac2760727035e28cf3d44b63f23e0149fde42f1fd9a35ac2db3
SHA512

84cd0656551743cc39ce39b727334794c74ffc0e61f0140b84fedee1ca7f59b5afa3b44483ffbefe3da1a9260bf6c1024f8ef43fa3b057f6b78c420aa67c2419
SSDEEP

6144:dLMhja1IbEDFRwmO7IYkG2FHba4/oaqa+vKZ3fsJnusCCP1cMpp/66TKBIFGrkQD:Aa1Ib4FR3O785X0JnVc+9S0acnGTG3I

Score

7^/10

Malware Config

Targets

- Target
  
  02c23f945a76a845d222485aef57d008_JaffaCakes118
- Size
  
  581KB
- MD5
  
  02c23f945a76a845d222485aef57d008
- SHA1
  
  08052bcd57bb03c5306ef317761d47f5a3a7f929
- SHA256
  
  c0116fda37624ac2760727035e28cf3d44b63f23e0149fde42f1fd9a35ac2db3
- SHA512
  
  84cd0656551743cc39ce39b727334794c74ffc0e61f0140b84fedee1ca7f59b5afa3b44483ffbefe3da1a9260bf6c1024f8ef43fa3b057f6b78c420aa67c2419
- SSDEEP
  
  6144:dLMhja1IbEDFRwmO7IYkG2FHba4/oaqa+vKZ3fsJnusCCP1cMpp/66TKBIFGrkQD:Aa1Ib4FR3O785X0JnVc+9S0acnGTG3I
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2