1c57b05fe4aa0f1ba969f19bf212400cfa517d0f70dc6b65b882f4243227c7e4 | Triage

Sharing

General

Target

ea8d7a17e521635b965a235388e52b09_JaffaCakes118
Size

515KB
Sample

240919-emlw3azgrp
MD5

ea8d7a17e521635b965a235388e52b09
SHA1

f20d9245abae44a7a6fc1d193664fb673e88978c
SHA256

1c57b05fe4aa0f1ba969f19bf212400cfa517d0f70dc6b65b882f4243227c7e4
SHA512

f39001d7917e28a6d6657b241847800729af4a7d84570d99c6c36476416d394dbb1857b0325a1db5c8fa8352a6e57864af2ee753d6172fca6ea7c5243ccd2251
SSDEEP

12288:M5rxLpq60Ez+gx6kCm0hcDMdCKB1YeFf0DNJVa04G:MdxLE60EakCm0CDMd9Q14

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ea8d7a17e521635b965a235388e52b09_JaffaCakes118
- Size
  
  515KB
- MD5
  
  ea8d7a17e521635b965a235388e52b09
- SHA1
  
  f20d9245abae44a7a6fc1d193664fb673e88978c
- SHA256
  
  1c57b05fe4aa0f1ba969f19bf212400cfa517d0f70dc6b65b882f4243227c7e4
- SHA512
  
  f39001d7917e28a6d6657b241847800729af4a7d84570d99c6c36476416d394dbb1857b0325a1db5c8fa8352a6e57864af2ee753d6172fca6ea7c5243ccd2251
- SSDEEP
  
  12288:M5rxLpq60Ez+gx6kCm0hcDMdCKB1YeFf0DNJVa04G:MdxLE60EakCm0CDMd9Q14
Score

7^/10

discovery
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2