69fb47ed4a7683f370372a8f8fc939cf9a8537250a96879e145d2739f633b7b7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dfa167190e69364d62b8486b2dc0bfb1_JaffaCakes118
Size

743KB
Sample

240914-gxg2zazhmd
MD5

dfa167190e69364d62b8486b2dc0bfb1
SHA1

27fd7ee6840783c0e528bd986022ec756d493f05
SHA256

69fb47ed4a7683f370372a8f8fc939cf9a8537250a96879e145d2739f633b7b7
SHA512

9433bada5f7d579fc027c8c760b051c00f5aeb54c0f7fce33ae00e4e8c91dcd8cd65e0b0262d14e0ad8ab43c9bd41ce703088164336845a0e47c1e18d20977ed
SSDEEP

12288:YRyNSklU4g/n/t0EW5A0zysvJwQ5oAlK+GXZvefIk6lQQ52LoRg08b5Cq6/4:cMlU4gf2EW5A2TJr/kRZvqIk6teU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dfa167190e69364d62b8486b2dc0bfb1_JaffaCakes118
- Size
  
  743KB
- MD5
  
  dfa167190e69364d62b8486b2dc0bfb1
- SHA1
  
  27fd7ee6840783c0e528bd986022ec756d493f05
- SHA256
  
  69fb47ed4a7683f370372a8f8fc939cf9a8537250a96879e145d2739f633b7b7
- SHA512
  
  9433bada5f7d579fc027c8c760b051c00f5aeb54c0f7fce33ae00e4e8c91dcd8cd65e0b0262d14e0ad8ab43c9bd41ce703088164336845a0e47c1e18d20977ed
- SSDEEP
  
  12288:YRyNSklU4g/n/t0EW5A0zysvJwQ5oAlK+GXZvefIk6lQQ52LoRg08b5Cq6/4:cMlU4gf2EW5A2TJr/kRZvqIk6teU
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2