3c880b55d2e7b4e304e05ae10c76fe6d2e2538434c2f25d14fabfcaa2d1c1253 | Triage

Sharing

General

Target

77c017ab2f5c9b46fcf38883f2dd343c_JaffaCakes118
Size

72KB
Sample

240727-lxp5sssdlp
MD5

77c017ab2f5c9b46fcf38883f2dd343c
SHA1

1c927427e9052f71a9a74c1d060bf3bc2fb28684
SHA256

3c880b55d2e7b4e304e05ae10c76fe6d2e2538434c2f25d14fabfcaa2d1c1253
SHA512

f2e9c1449d4cc33acdaeed4c74fc73322f3be4a700833559e28705b5ab375ae4182c36d018568553a970c8688f93212f35f12554463225774549da420d66264b
SSDEEP

768:rpQNwC3BEc4QEfu0Ei8XxNDINE3BEJwRr9E:teThavEjDWguK9E

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  77c017ab2f5c9b46fcf38883f2dd343c_JaffaCakes118
- Size
  
  72KB
- MD5
  
  77c017ab2f5c9b46fcf38883f2dd343c
- SHA1
  
  1c927427e9052f71a9a74c1d060bf3bc2fb28684
- SHA256
  
  3c880b55d2e7b4e304e05ae10c76fe6d2e2538434c2f25d14fabfcaa2d1c1253
- SHA512
  
  f2e9c1449d4cc33acdaeed4c74fc73322f3be4a700833559e28705b5ab375ae4182c36d018568553a970c8688f93212f35f12554463225774549da420d66264b
- SSDEEP
  
  768:rpQNwC3BEc4QEfu0Ei8XxNDINE3BEJwRr9E:teThavEjDWguK9E
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion