58dd01a3b49d3df61c8ea1b884e7a7aca80712937dffbeaebc6edf697231f9b5 | Triage

Sharing

General

Target

35ce5b9c0ab70d49eb9326ebf0dffed9_JaffaCakes118
Size

54KB
Sample

240710-wnqp3ssakp
MD5

35ce5b9c0ab70d49eb9326ebf0dffed9
SHA1

10ef0c6dc944bfba8d9dddda5bd5af62937d95b4
SHA256

58dd01a3b49d3df61c8ea1b884e7a7aca80712937dffbeaebc6edf697231f9b5
SHA512

99bc00ef26fc57fb86c6ce18c2bded4187e91dea9bda339773b3b7d6019315a1277aafe4b3c9a9b46e17519aa2f93080a8dfa00e08e9e3213b3f448f4a0a0034
SSDEEP

768:79T7DkxBos1wirNyI+wVtTWFSlu7GwKYRnkbFrFeZs81HNQBMpc08i1vlpWxCRzd:VwBoYw+v1tg/fKYRixFeZs806b8GpZZ

Score

10^/10

evasion execution

Malware Config

Targets

- Target
  
  35ce5b9c0ab70d49eb9326ebf0dffed9_JaffaCakes118
- Size
  
  54KB
- MD5
  
  35ce5b9c0ab70d49eb9326ebf0dffed9
- SHA1
  
  10ef0c6dc944bfba8d9dddda5bd5af62937d95b4
- SHA256
  
  58dd01a3b49d3df61c8ea1b884e7a7aca80712937dffbeaebc6edf697231f9b5
- SHA512
  
  99bc00ef26fc57fb86c6ce18c2bded4187e91dea9bda339773b3b7d6019315a1277aafe4b3c9a9b46e17519aa2f93080a8dfa00e08e9e3213b3f448f4a0a0034
- SSDEEP
  
  768:79T7DkxBos1wirNyI+wVtTWFSlu7GwKYRnkbFrFeZs81HNQBMpc08i1vlpWxCRzd:VwBoYw+v1tg/fKYRixFeZs806b8GpZZ
Score

10^/10

evasion execution
- Disables service(s)
  evasion execution
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionexecution

behavioral2

evasionexecution