bb182e4ddd1476c53f5fa9219bc13f4090ad4e895fd5992a14c5e7b156d26e2e | Triage

Sharing

General

Target

02fb6c0799ef2a5c8a13a809a6257297_JaffaCakes118
Size

15KB
Sample

240620-fk14msvbjq
MD5

02fb6c0799ef2a5c8a13a809a6257297
SHA1

fb72159e599000a6022f18cbd51e02e27f7143a6
SHA256

bb182e4ddd1476c53f5fa9219bc13f4090ad4e895fd5992a14c5e7b156d26e2e
SHA512

af40c411dfef1a548050309393f5162fcb24087f91c7510a29b1ae8d4c8c7876115d2aeaebea5cabf0aec49cdc589837ce0105c9bc6400cfe57dcffcca74aec1
SSDEEP

384:IgtZeAbGsJ5MeFo3/x5ZSi32APNq64UeRbJXqh0mw7GdSs:DLe8J6eU/jwimAPZybrpo

Score

7^/10

Malware Config

Targets

- Target
  
  02fb6c0799ef2a5c8a13a809a6257297_JaffaCakes118
- Size
  
  15KB
- MD5
  
  02fb6c0799ef2a5c8a13a809a6257297
- SHA1
  
  fb72159e599000a6022f18cbd51e02e27f7143a6
- SHA256
  
  bb182e4ddd1476c53f5fa9219bc13f4090ad4e895fd5992a14c5e7b156d26e2e
- SHA512
  
  af40c411dfef1a548050309393f5162fcb24087f91c7510a29b1ae8d4c8c7876115d2aeaebea5cabf0aec49cdc589837ce0105c9bc6400cfe57dcffcca74aec1
- SSDEEP
  
  384:IgtZeAbGsJ5MeFo3/x5ZSi32APNq64UeRbJXqh0mw7GdSs:DLe8J6eU/jwimAPZybrpo
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2