b36733cdf001c041e1431473cbc3df9a4767b8ee7c5c8911ae0c8e988ac0459c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e178971cdcfbea364e8f6043e02474eb_JaffaCakes118
Size

96KB
Sample

240915-b9cp5azblq
MD5

e178971cdcfbea364e8f6043e02474eb
SHA1

6d363b2b14242da76639caf6581c3c87fcf40543
SHA256

b36733cdf001c041e1431473cbc3df9a4767b8ee7c5c8911ae0c8e988ac0459c
SHA512

051418f2c2561c9592ba708c33dacf506cac885fda6b3e14200dfb97c65525f00992217d4c33e90ce0f97a2a3b09a17dc7ce44d90c196b23e10710d00f551a62
SSDEEP

768:KBOMhswZUErjVmYJNtWoGqxXbPrNw88dyyPRRgMMKPL0SSMCCkaaxGGWq0f:H3EnVmkNtWon288dyyPRRgMMqq0f

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  e178971cdcfbea364e8f6043e02474eb_JaffaCakes118
- Size
  
  96KB
- MD5
  
  e178971cdcfbea364e8f6043e02474eb
- SHA1
  
  6d363b2b14242da76639caf6581c3c87fcf40543
- SHA256
  
  b36733cdf001c041e1431473cbc3df9a4767b8ee7c5c8911ae0c8e988ac0459c
- SHA512
  
  051418f2c2561c9592ba708c33dacf506cac885fda6b3e14200dfb97c65525f00992217d4c33e90ce0f97a2a3b09a17dc7ce44d90c196b23e10710d00f551a62
- SSDEEP
  
  768:KBOMhswZUErjVmYJNtWoGqxXbPrNw88dyyPRRgMMKPL0SSMCCkaaxGGWq0f:H3EnVmkNtWon288dyyPRRgMMqq0f
Score

7^/10

defense_evasion discovery
- Deletes itself
- Loads dropped DLL
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2