3d6a89ac693c88966d00c0d554f029a95d5c3a2dbbf8977233e0e6ea8ca822a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

067eefa5f0b0bc30dc4dfe4cdd1b2210_JaffaCakes118
Size

16KB
Sample

240620-qxxl4avbrn
MD5

067eefa5f0b0bc30dc4dfe4cdd1b2210
SHA1

c642fcbaa2ea64580a5d4cc1e2866ca64c7041dc
SHA256

3d6a89ac693c88966d00c0d554f029a95d5c3a2dbbf8977233e0e6ea8ca822a5
SHA512

7aca6e704502c746edceb94e12fd588ddb524a0d48e2dba861416ec5ed7be8068eead194655c0c87fcf80c31602349c1138062810d2f0599e7f303a14b2ead52
SSDEEP

384:IuhZeAbNM/sRubWTic0YSpHTnfcPi5PGdgsu/8J:/ebsQbWTZ0YS5d5kgsD

Score

7^/10

Malware Config

Targets

- Target
  
  067eefa5f0b0bc30dc4dfe4cdd1b2210_JaffaCakes118
- Size
  
  16KB
- MD5
  
  067eefa5f0b0bc30dc4dfe4cdd1b2210
- SHA1
  
  c642fcbaa2ea64580a5d4cc1e2866ca64c7041dc
- SHA256
  
  3d6a89ac693c88966d00c0d554f029a95d5c3a2dbbf8977233e0e6ea8ca822a5
- SHA512
  
  7aca6e704502c746edceb94e12fd588ddb524a0d48e2dba861416ec5ed7be8068eead194655c0c87fcf80c31602349c1138062810d2f0599e7f303a14b2ead52
- SSDEEP
  
  384:IuhZeAbNM/sRubWTic0YSpHTnfcPi5PGdgsu/8J:/ebsQbWTZ0YS5d5kgsD
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2