0371e017db58de42966a58c65dd792d1885793f6e373f864da3d666e3b521900 | Triage

Sharing

General

Target

8b8abff40ed5eb1ad1d07d31f9dfbb7a_JaffaCakes118
Size

37KB
Sample

240811-xeasyawhmc
MD5

8b8abff40ed5eb1ad1d07d31f9dfbb7a
SHA1

f75412346181f1deacd9307e9a56631400bc82ec
SHA256

0371e017db58de42966a58c65dd792d1885793f6e373f864da3d666e3b521900
SHA512

a5f35806d073ffad141804bbdd340189db425df0b92c1ff1600e29cc80f3513867841583c9db0d2050bbd1b9e4ba169023bf61437a972498551a8f2b381bc316
SSDEEP

768:AU9bJJtna7ogNBndz36SwJXUHwOkvJ2aHq3xJd5X4:AU9aNBdL6VZOkv43x5I

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  8b8abff40ed5eb1ad1d07d31f9dfbb7a_JaffaCakes118
- Size
  
  37KB
- MD5
  
  8b8abff40ed5eb1ad1d07d31f9dfbb7a
- SHA1
  
  f75412346181f1deacd9307e9a56631400bc82ec
- SHA256
  
  0371e017db58de42966a58c65dd792d1885793f6e373f864da3d666e3b521900
- SHA512
  
  a5f35806d073ffad141804bbdd340189db425df0b92c1ff1600e29cc80f3513867841583c9db0d2050bbd1b9e4ba169023bf61437a972498551a8f2b381bc316
- SSDEEP
  
  768:AU9bJJtna7ogNBndz36SwJXUHwOkvJ2aHq3xJd5X4:AU9aNBdL6VZOkv43x5I
Score

7^/10

defense_evasion discovery
- Deletes itself
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2