2db9b2e4c22592d56b94bee85203c2bf90ae64f6e3e6bb701539c63761c9155b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7442d3ee775ae5eb6cedc0e5524dd18e_JaffaCakes118
Size

48KB
Sample

240726-qr1fss1alk
MD5

7442d3ee775ae5eb6cedc0e5524dd18e
SHA1

7ede3bb68db9fa6ccce6bb7d8e9ae1d34dc24e30
SHA256

2db9b2e4c22592d56b94bee85203c2bf90ae64f6e3e6bb701539c63761c9155b
SHA512

d565ad606481cb755688c506e8e101f19d55c5ca0447e6d010e5b890da347520ae72ef4a94392479a11d652d93ab105e9a3b4f86527cbc84b1afc7d0b321f87d
SSDEEP

768:Q06tdGwrvUOW0y3OPYuB0u4m8Zc+t03yH:T2Frc/EbSN9t03yH

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  7442d3ee775ae5eb6cedc0e5524dd18e_JaffaCakes118
- Size
  
  48KB
- MD5
  
  7442d3ee775ae5eb6cedc0e5524dd18e
- SHA1
  
  7ede3bb68db9fa6ccce6bb7d8e9ae1d34dc24e30
- SHA256
  
  2db9b2e4c22592d56b94bee85203c2bf90ae64f6e3e6bb701539c63761c9155b
- SHA512
  
  d565ad606481cb755688c506e8e101f19d55c5ca0447e6d010e5b890da347520ae72ef4a94392479a11d652d93ab105e9a3b4f86527cbc84b1afc7d0b321f87d
- SSDEEP
  
  768:Q06tdGwrvUOW0y3OPYuB0u4m8Zc+t03yH:T2Frc/EbSN9t03yH
Score

7^/10

defense_evasion discovery
- Deletes itself
- Executes dropped EXE
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery