ec7326938f2f3fd73a829592493cf88fe7c8678821bd9e1204d2e2613361aa1b | Triage

Sharing

General

Target

8d946f535317f57b170b7a1a83f29997_JaffaCakes118
Size

792KB
Sample

240812-gphcrsyaqq
MD5

8d946f535317f57b170b7a1a83f29997
SHA1

bcd1f38265cefb3e4a30b800f510b208520b528e
SHA256

ec7326938f2f3fd73a829592493cf88fe7c8678821bd9e1204d2e2613361aa1b
SHA512

f2ce6e26a1fbe92d503c8439a7823e849641baf468f658ae0d1bc46d24b746f1b374849b6db8d7142abeb3d8ce6ec7c578fe88577f3dfb6b9ce310efae6bfc25
SSDEEP

12288:kGvIYwm28vbCid8vuENQontpbTT2rLnO/tOe4AcYgL8+LK:klVm28v2iKvuENvb2rLQj4AcYgw+L

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8d946f535317f57b170b7a1a83f29997_JaffaCakes118
- Size
  
  792KB
- MD5
  
  8d946f535317f57b170b7a1a83f29997
- SHA1
  
  bcd1f38265cefb3e4a30b800f510b208520b528e
- SHA256
  
  ec7326938f2f3fd73a829592493cf88fe7c8678821bd9e1204d2e2613361aa1b
- SHA512
  
  f2ce6e26a1fbe92d503c8439a7823e849641baf468f658ae0d1bc46d24b746f1b374849b6db8d7142abeb3d8ce6ec7c578fe88577f3dfb6b9ce310efae6bfc25
- SSDEEP
  
  12288:kGvIYwm28vbCid8vuENQontpbTT2rLnO/tOe4AcYgL8+LK:klVm28v2iKvuENvb2rLQj4AcYgw+L
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2