7ee3cb818dd89cf75c9f085e84136c877860a28e66ea40d5be4d7c641f225c90 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8bf6b66ece0ed46f8e485df530a3170_JaffaCakes118
Size

53KB
Sample

240822-xj87assdmh
MD5

b8bf6b66ece0ed46f8e485df530a3170
SHA1

ecffcb7bea8b687429f445fb2683c0c74df3b98f
SHA256

7ee3cb818dd89cf75c9f085e84136c877860a28e66ea40d5be4d7c641f225c90
SHA512

2f803b2f4b47f4e03af30cd7c73cbf40855fa7a71e5f4f2b6e4ea0d384fa3c6c30d033c7815e47c75f610ff89d016bc765c6108b471c67844ccc8d74a13f2983
SSDEEP

768:moYUlEN+7cJSKgHKhcgDIbGN8GYZs+G1ricPW4tkioXQqJjN5q4ulZYhM5bxrSl6:Muk+nHKnDkGNtYjG1rGXt5klZz3a6

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  b8bf6b66ece0ed46f8e485df530a3170_JaffaCakes118
- Size
  
  53KB
- MD5
  
  b8bf6b66ece0ed46f8e485df530a3170
- SHA1
  
  ecffcb7bea8b687429f445fb2683c0c74df3b98f
- SHA256
  
  7ee3cb818dd89cf75c9f085e84136c877860a28e66ea40d5be4d7c641f225c90
- SHA512
  
  2f803b2f4b47f4e03af30cd7c73cbf40855fa7a71e5f4f2b6e4ea0d384fa3c6c30d033c7815e47c75f610ff89d016bc765c6108b471c67844ccc8d74a13f2983
- SSDEEP
  
  768:moYUlEN+7cJSKgHKhcgDIbGN8GYZs+G1ricPW4tkioXQqJjN5q4ulZYhM5bxrSl6:Muk+nHKnDkGNtYjG1rGXt5klZz3a6
Score

7^/10

defense_evasion discovery
- Deletes itself
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery