da2f73c0237265ce09ff73652c7eb260ddf00a589ddf5dd2e93f12e462c44751 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b32f2e6768f460a0c6588ab384b127cf_JaffaCakes118
Size

104KB
Sample

240821-mzf6cayaql
MD5

b32f2e6768f460a0c6588ab384b127cf
SHA1

0c5a2707df77e37fd3892ba3f26f519402e12c34
SHA256

da2f73c0237265ce09ff73652c7eb260ddf00a589ddf5dd2e93f12e462c44751
SHA512

ec229f94d098774885f31b0d8c2d76c7d65ee2d4443840fb8ea9c8aafc5d12c0ede1a24ca81234692fa5f27310705673f1edb525255c1bea08c48a4db2cc0242
SSDEEP

768:kPZWWEW7KVlNrVPLJtxP0/GzPZWWEHaf3GttouxvQGSMY7I7z6:jWRKVZ1aWYttMGSr

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  b32f2e6768f460a0c6588ab384b127cf_JaffaCakes118
- Size
  
  104KB
- MD5
  
  b32f2e6768f460a0c6588ab384b127cf
- SHA1
  
  0c5a2707df77e37fd3892ba3f26f519402e12c34
- SHA256
  
  da2f73c0237265ce09ff73652c7eb260ddf00a589ddf5dd2e93f12e462c44751
- SHA512
  
  ec229f94d098774885f31b0d8c2d76c7d65ee2d4443840fb8ea9c8aafc5d12c0ede1a24ca81234692fa5f27310705673f1edb525255c1bea08c48a4db2cc0242
- SSDEEP
  
  768:kPZWWEW7KVlNrVPLJtxP0/GzPZWWEHaf3GttouxvQGSMY7I7z6:jWRKVZ1aWYttMGSr
Score

7^/10

defense_evasion discovery
- Deletes itself
- Loads dropped DLL
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery