74f0b1918d311c56ac0f072fe2470cae44259e90fe1fcbaf3dbcfa380352ef9f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a240e3291278695efaa16834338d1194_JaffaCakes118
Size

80KB
Sample

240817-mzanka1hle
MD5

a240e3291278695efaa16834338d1194
SHA1

e0b7f935cbe2777a2dc86999c47c94ffa7a4658d
SHA256

74f0b1918d311c56ac0f072fe2470cae44259e90fe1fcbaf3dbcfa380352ef9f
SHA512

1958368078e49c8d950f5bcc1075cf5e9c322fa34a3c70d9334bae15424b531e17e831c721ab54b92d8c5a3eeced98c0c8508271715ab4ee443ffe19ffa94d03
SSDEEP

1536:V0G7B7I3coSZWCFHp82vdnp58Wd0OQramV4TGfH0fts8cnAVH2P8b:V0+E3BMp7X53tQrADfpp2P8b

Score

8^/10

discovery evasion

Malware Config

Targets

- Target
  
  a240e3291278695efaa16834338d1194_JaffaCakes118
- Size
  
  80KB
- MD5
  
  a240e3291278695efaa16834338d1194
- SHA1
  
  e0b7f935cbe2777a2dc86999c47c94ffa7a4658d
- SHA256
  
  74f0b1918d311c56ac0f072fe2470cae44259e90fe1fcbaf3dbcfa380352ef9f
- SHA512
  
  1958368078e49c8d950f5bcc1075cf5e9c322fa34a3c70d9334bae15424b531e17e831c721ab54b92d8c5a3eeced98c0c8508271715ab4ee443ffe19ffa94d03
- SSDEEP
  
  1536:V0G7B7I3coSZWCFHp82vdnp58Wd0OQramV4TGfH0fts8cnAVH2P8b:V0+E3BMp7X53tQrADfpp2P8b
Score

8^/10

discovery evasion
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Remote System Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2