cfc1f0b0da603cd923df411ff1ee4671a186934e799f3bbe0a5c11e207bfa0cf | Triage

Sharing

General

Target

a561b00d10d6bdc5fed56ee594c1009d_JaffaCakes118
Size

135KB
Sample

240818-e3knyayarn
MD5

a561b00d10d6bdc5fed56ee594c1009d
SHA1

3d236a626924be0d47a9de103d794fef79519752
SHA256

cfc1f0b0da603cd923df411ff1ee4671a186934e799f3bbe0a5c11e207bfa0cf
SHA512

850ca3748a4528c193c5179cceb1d056f6edb8de17dec9021d264ea63bc7978a619ff7f34bd877b7b583c18d9e7debaeaa6e1156e60c69fdee9233b18b7ea4b3
SSDEEP

3072:BzYttQ5tQLqWAk77nBxc5AB2/+n6YT65PdqSbhUUqb/5out:BzYPsMqWAk7DPMa6YTePbwb/5oS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a561b00d10d6bdc5fed56ee594c1009d_JaffaCakes118
- Size
  
  135KB
- MD5
  
  a561b00d10d6bdc5fed56ee594c1009d
- SHA1
  
  3d236a626924be0d47a9de103d794fef79519752
- SHA256
  
  cfc1f0b0da603cd923df411ff1ee4671a186934e799f3bbe0a5c11e207bfa0cf
- SHA512
  
  850ca3748a4528c193c5179cceb1d056f6edb8de17dec9021d264ea63bc7978a619ff7f34bd877b7b583c18d9e7debaeaa6e1156e60c69fdee9233b18b7ea4b3
- SSDEEP
  
  3072:BzYttQ5tQLqWAk77nBxc5AB2/+n6YT65PdqSbhUUqb/5out:BzYPsMqWAk7DPMa6YTePbwb/5oS
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2