d13edddb0e717789654a8218c4142318fc6195a1bf91bc7db5e0c0b3d4f47664 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b42e93434e8d377a38214978c977527c_JaffaCakes118
Size

1.8MB
Sample

240821-txfkcsyfke
MD5

b42e93434e8d377a38214978c977527c
SHA1

8439427788ef2864f67a44eb89357a2938187a14
SHA256

d13edddb0e717789654a8218c4142318fc6195a1bf91bc7db5e0c0b3d4f47664
SHA512

f02b8050d2490703649f1f5fc3998e6dbb91600263622d2be83b1c991f7c204c6fb65df3044960a181a1e183848d05728710b0ccebadf71593f7f7414af61774
SSDEEP

49152:w/ixbpVndRcpfqwYO3u2XoKNLlMDEe/pmVS/F0jN6:wadnfnwp3oOLuB/3/uo

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  b42e93434e8d377a38214978c977527c_JaffaCakes118
- Size
  
  1.8MB
- MD5
  
  b42e93434e8d377a38214978c977527c
- SHA1
  
  8439427788ef2864f67a44eb89357a2938187a14
- SHA256
  
  d13edddb0e717789654a8218c4142318fc6195a1bf91bc7db5e0c0b3d4f47664
- SHA512
  
  f02b8050d2490703649f1f5fc3998e6dbb91600263622d2be83b1c991f7c204c6fb65df3044960a181a1e183848d05728710b0ccebadf71593f7f7414af61774
- SSDEEP
  
  49152:w/ixbpVndRcpfqwYO3u2XoKNLlMDEe/pmVS/F0jN6:wadnfnwp3oOLuB/3/uo
Score

7^/10

defense_evasion discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Hijack Execution Flow

DLL Search Order Hijacking

Privilege Escalation

Hijack Execution Flow

DLL Search Order Hijacking

Defense Evasion

Hijack Execution Flow

DLL Search Order Hijacking

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery