dcc6864883f770c4ccaf486be9975ce581c5c3593df630c0df78b856f0c4c09d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

afb7fc5edc8dcdc3e746a823a3058fdc_JaffaCakes118
Size

76KB
Sample

240820-sh4g7ssfjq
MD5

afb7fc5edc8dcdc3e746a823a3058fdc
SHA1

b93edf43f7d712a9ebc5435588206a84cb8cac8b
SHA256

dcc6864883f770c4ccaf486be9975ce581c5c3593df630c0df78b856f0c4c09d
SHA512

ed28b215c41a3d9b2b0620439f42ec0e510bdb2e2897fbed4bde4488cf2a65e628ca1c2a007fe193e85d40e11e628862a54c988b099e070a75d3000e9eb6dc1d
SSDEEP

384:3Jo/3taMWKFSIWUIvBIqyrBzSFeClW1HmbGXLjGU/rHWxjDU80zL:ZovcW32BIq8zSFeeOHH7y0rHWtDJ0z

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  afb7fc5edc8dcdc3e746a823a3058fdc_JaffaCakes118
- Size
  
  76KB
- MD5
  
  afb7fc5edc8dcdc3e746a823a3058fdc
- SHA1
  
  b93edf43f7d712a9ebc5435588206a84cb8cac8b
- SHA256
  
  dcc6864883f770c4ccaf486be9975ce581c5c3593df630c0df78b856f0c4c09d
- SHA512
  
  ed28b215c41a3d9b2b0620439f42ec0e510bdb2e2897fbed4bde4488cf2a65e628ca1c2a007fe193e85d40e11e628862a54c988b099e070a75d3000e9eb6dc1d
- SSDEEP
  
  384:3Jo/3taMWKFSIWUIvBIqyrBzSFeClW1HmbGXLjGU/rHWxjDU80zL:ZovcW32BIq8zSFeeOHH7y0rHWtDJ0z
Score

7^/10

defense_evasion discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery