e072a396e28e413b502fabe3435eb89268f83fd002d89ab49b85e1819a3b1b82 | Triage

Sharing

General

Target

6f309172e1e617bf4843d904adf9e8d9_JaffaCakes118
Size

852KB
Sample

240725-mfdacawdpa
MD5

6f309172e1e617bf4843d904adf9e8d9
SHA1

6e1a5184c7030e61c5d946935fdb68f1f987dcbc
SHA256

e072a396e28e413b502fabe3435eb89268f83fd002d89ab49b85e1819a3b1b82
SHA512

95b4a309c07eda673a14d3c1efd80824ffe8938a354c51362bf6140d5e8ca1210f8f4cb230f9033a36e815f3bf04962aa6d8f19e1c049f366c8859ddc3f2a087
SSDEEP

12288:4Mcxt7bFW5uQl5u7qq0DNYWrBkRmVALp3amvESVc0PltLds83d8:tWHW55OqvV6eALtamvHTK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6f309172e1e617bf4843d904adf9e8d9_JaffaCakes118
- Size
  
  852KB
- MD5
  
  6f309172e1e617bf4843d904adf9e8d9
- SHA1
  
  6e1a5184c7030e61c5d946935fdb68f1f987dcbc
- SHA256
  
  e072a396e28e413b502fabe3435eb89268f83fd002d89ab49b85e1819a3b1b82
- SHA512
  
  95b4a309c07eda673a14d3c1efd80824ffe8938a354c51362bf6140d5e8ca1210f8f4cb230f9033a36e815f3bf04962aa6d8f19e1c049f366c8859ddc3f2a087
- SSDEEP
  
  12288:4Mcxt7bFW5uQl5u7qq0DNYWrBkRmVALp3amvESVc0PltLds83d8:tWHW55OqvV6eALtamvHTK
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2