f32921441c201814bb319a1a7828cc2798e2584e1ecbbbbe55d7053ce2e6f9ba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9399235c547835e18f610a7ea82c5fd0_JaffaCakes118
Size

2.6MB
Sample

240813-sg9mtszhjf
MD5

9399235c547835e18f610a7ea82c5fd0
SHA1

b8cb8cfd98d3dfaaa92a4cf9f469a6ea326beca9
SHA256

f32921441c201814bb319a1a7828cc2798e2584e1ecbbbbe55d7053ce2e6f9ba
SHA512

875efb7cfe2028fc90b329079c9cd1a33a07dca149b86dc99ddc234b044864f32aed810b0b48e0845c4293c0415462b331649a6baa42295383f614e474150a1b
SSDEEP

12288:ZZz2fGvMp48ENfOdDGGR17vdn2sSejPtbCl0mD4U:/4W8EUdSGR1Dd2sSerVCl0mD4

Score

8^/10

discovery evasion

Malware Config

Targets

- Target
  
  9399235c547835e18f610a7ea82c5fd0_JaffaCakes118
- Size
  
  2.6MB
- MD5
  
  9399235c547835e18f610a7ea82c5fd0
- SHA1
  
  b8cb8cfd98d3dfaaa92a4cf9f469a6ea326beca9
- SHA256
  
  f32921441c201814bb319a1a7828cc2798e2584e1ecbbbbe55d7053ce2e6f9ba
- SHA512
  
  875efb7cfe2028fc90b329079c9cd1a33a07dca149b86dc99ddc234b044864f32aed810b0b48e0845c4293c0415462b331649a6baa42295383f614e474150a1b
- SSDEEP
  
  12288:ZZz2fGvMp48ENfOdDGGR17vdn2sSejPtbCl0mD4U:/4W8EUdSGR1Dd2sSerVCl0mD4
Score

8^/10

discovery evasion
- Disables Task Manager via registry modification
  evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion