2f1498b757d3ecda916643e0867bdafbcc8b7f1bf5112918d9eb409c13bc69e1 | Triage

Sharing

General

Target

db31d176dcf95f6eb210363078b822c6_JaffaCakes118
Size

9.5MB
Sample

240911-znaweasclp
MD5

db31d176dcf95f6eb210363078b822c6
SHA1

42bb39fe8881878b44fa627ec5d59abb65d55bce
SHA256

2f1498b757d3ecda916643e0867bdafbcc8b7f1bf5112918d9eb409c13bc69e1
SHA512

ac2eaaa19c3e5083b81b631f865550bfc1edbf7149437f2b4b0d859d4b49e2e232c466e467fd093d859762411858853712da90f0ced3bee3bcc7afe959eb1df7
SSDEEP

196608:pc6tlEOGq1/3svSsSlMce0Y88Tu5TWHXTOYVJyRQM4QHyBJR3mKsXh/u7u0W:pc6tCOL/3QSVPH8TskXTOYaRCQa2Xh2+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  SETUP.EXE
- Size
  
  87KB
- MD5
  
  d4acd867d0045550eca5ab51b254be3b
- SHA1
  
  59c71cd700109c9148be0152feb1dfd78c4f9794
- SHA256
  
  03baec886184150ff6e7e860eeb6e75d319238a247edf3a7e54304b56ca9d777
- SHA512
  
  f5539864c9d8d81c18c16bb847344c52ccd33ecfeb9cf0a49524523abb66cdd066c1064a7b0956a15f0d3f7776bbcc242993ea45c5c0daad18192cbc20782fda
- SSDEEP
  
  1536:+qDZUusNgXr5YDl6PvQuiR+heyCx1lQhUzMHJso0/psTjbKd:+std5vQR+gyYlUUzMHJso0ujOd
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2