b515a046f9a5330f33127d7c2c06330d60455411035488e221ef48fe80a841d0 | Triage

Sharing

General

Target

78c890aa534cad39243f187b4dfc320b_JaffaCakes118
Size

78KB
Sample

240727-tx63baxgpq
MD5

78c890aa534cad39243f187b4dfc320b
SHA1

5266eaa937701a74d9855d9c75dfca2641866233
SHA256

b515a046f9a5330f33127d7c2c06330d60455411035488e221ef48fe80a841d0
SHA512

846443f12c3fb4a8c1d55e69159d405a2a5de26c2a035deefdd37dfef02967a60b4a1e3a2e5a3eb17174d047e0d6f3497ff952c8c37d3138c31b2be08b23d6f4
SSDEEP

1536:oRZ91d7n9FmfnhnKn+YvUtBayHbOq9wmskMMMl:oRP1d7n9FgK+YvUtgyHbOq6V

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  78c890aa534cad39243f187b4dfc320b_JaffaCakes118
- Size
  
  78KB
- MD5
  
  78c890aa534cad39243f187b4dfc320b
- SHA1
  
  5266eaa937701a74d9855d9c75dfca2641866233
- SHA256
  
  b515a046f9a5330f33127d7c2c06330d60455411035488e221ef48fe80a841d0
- SHA512
  
  846443f12c3fb4a8c1d55e69159d405a2a5de26c2a035deefdd37dfef02967a60b4a1e3a2e5a3eb17174d047e0d6f3497ff952c8c37d3138c31b2be08b23d6f4
- SSDEEP
  
  1536:oRZ91d7n9FmfnhnKn+YvUtBayHbOq9wmskMMMl:oRP1d7n9FgK+YvUtgyHbOq6V
Score

7^/10

defense_evasion discovery
- Deletes itself
- Executes dropped EXE
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery