132854776e4d083a81b88162e2dd0ad246004e6b021edc812c86eaff21ce96e3 | Triage

Sharing

General

Target

8379af366f900dfcdb882543e28cb2c6_JaffaCakes118
Size

36KB
Sample

240809-ze4gcssbkc
MD5

8379af366f900dfcdb882543e28cb2c6
SHA1

09905b3a655a339885a4e6952d63bc9d09d6813b
SHA256

132854776e4d083a81b88162e2dd0ad246004e6b021edc812c86eaff21ce96e3
SHA512

ba81da6121852ff0196968d60c9f8448d62afd9ff88c956b5b3df018bc5c81d25620c3f4d649ac7e3923bbfa4c82743ad0b96f44af1adb5880e0e49400674897
SSDEEP

768:kseuAseunKeuILSmPpf8A8NvUUfusTcCt6bj4zPtS5kS1aA1AD:k8L8AGsUftDthzVS5D1j1AD

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  8379af366f900dfcdb882543e28cb2c6_JaffaCakes118
- Size
  
  36KB
- MD5
  
  8379af366f900dfcdb882543e28cb2c6
- SHA1
  
  09905b3a655a339885a4e6952d63bc9d09d6813b
- SHA256
  
  132854776e4d083a81b88162e2dd0ad246004e6b021edc812c86eaff21ce96e3
- SHA512
  
  ba81da6121852ff0196968d60c9f8448d62afd9ff88c956b5b3df018bc5c81d25620c3f4d649ac7e3923bbfa4c82743ad0b96f44af1adb5880e0e49400674897
- SSDEEP
  
  768:kseuAseunKeuILSmPpf8A8NvUUfusTcCt6bj4zPtS5kS1aA1AD:k8L8AGsUftDthzVS5D1j1AD
Score

7^/10

defense_evasion discovery
- Deletes itself
- Executes dropped EXE
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2