3967f49c15abb7678bc86b25943f5e3f1b56c19eb7f30a066a03b41c78fa2ef0 | Triage

Sharing

General

Target

b1a7807a330c69927d64d7f320a2912c_JaffaCakes118
Size

366KB
Sample

240821-b1w3eaxemp
MD5

b1a7807a330c69927d64d7f320a2912c
SHA1

428247d7c9e9b345f840ee597d0a9850020377e7
SHA256

3967f49c15abb7678bc86b25943f5e3f1b56c19eb7f30a066a03b41c78fa2ef0
SHA512

76317edd83a8f5d1621d292138961fda9c8f5f1cc6e86f05342da0ca590a1d1e8a790c2dcb94e0b48fc86a9822a2ad9024549b8792bc4c76d0b64df6abb3a485
SSDEEP

6144:ZwlyFsMF2idZecnl20lHRxp3g7OwO4Q9Ch+KfHUJAKv88Wd7fsPVZMGg1fz2/3aI:qlW3F3Z4mxx6eCPpa88WpfGVZMGN/KI

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b1a7807a330c69927d64d7f320a2912c_JaffaCakes118
- Size
  
  366KB
- MD5
  
  b1a7807a330c69927d64d7f320a2912c
- SHA1
  
  428247d7c9e9b345f840ee597d0a9850020377e7
- SHA256
  
  3967f49c15abb7678bc86b25943f5e3f1b56c19eb7f30a066a03b41c78fa2ef0
- SHA512
  
  76317edd83a8f5d1621d292138961fda9c8f5f1cc6e86f05342da0ca590a1d1e8a790c2dcb94e0b48fc86a9822a2ad9024549b8792bc4c76d0b64df6abb3a485
- SSDEEP
  
  6144:ZwlyFsMF2idZecnl20lHRxp3g7OwO4Q9Ch+KfHUJAKv88Wd7fsPVZMGg1fz2/3aI:qlW3F3Z4mxx6eCPpa88WpfGVZMGN/KI
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2