6474cb5e005fdb0ea5606a9e6bf6228fd114d72db74087b52e99714e6ebb6790 | Triage

Sharing

General

Target

a2337540a7e632e7e3db67f13ae31954_JaffaCakes118
Size

63KB
Sample

240817-ml8y7stgpl
MD5

a2337540a7e632e7e3db67f13ae31954
SHA1

4645143d3157780132ffa0010fb0d868cc66424f
SHA256

6474cb5e005fdb0ea5606a9e6bf6228fd114d72db74087b52e99714e6ebb6790
SHA512

27673fb04a1f8571fa920bb34726e5972e2f83b512f0e409e37cf7b4a08590b8a19f6d02551fffcd33e0f4a79d7fec512af40a26c29923a1b388d97656fd1f17
SSDEEP

1536:cOswhfYdFF8+fv9/4qQS6/4v6S0Sl1XKWK:heFF7/j6Qy7Sl1XKWK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a2337540a7e632e7e3db67f13ae31954_JaffaCakes118
- Size
  
  63KB
- MD5
  
  a2337540a7e632e7e3db67f13ae31954
- SHA1
  
  4645143d3157780132ffa0010fb0d868cc66424f
- SHA256
  
  6474cb5e005fdb0ea5606a9e6bf6228fd114d72db74087b52e99714e6ebb6790
- SHA512
  
  27673fb04a1f8571fa920bb34726e5972e2f83b512f0e409e37cf7b4a08590b8a19f6d02551fffcd33e0f4a79d7fec512af40a26c29923a1b388d97656fd1f17
- SSDEEP
  
  1536:cOswhfYdFF8+fv9/4qQS6/4v6S0Sl1XKWK:heFF7/j6Qy7Sl1XKWK
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2