d5ea7e53bfdace00c01781ef2d026bb264c53803459531fa7ef07d2dbc4158f9 | Triage

Sharing

General

Target

ec90b4de097dfeea48bbc6c0438581da_JaffaCakes118
Size

557KB
Sample

240920-bsg9aa1fqh
MD5

ec90b4de097dfeea48bbc6c0438581da
SHA1

5b21e8efc42ddc679e021e756969ef580aa1e6ac
SHA256

d5ea7e53bfdace00c01781ef2d026bb264c53803459531fa7ef07d2dbc4158f9
SHA512

36557c4ced96f74d1f6a13e8e647a0d67420e15a5b19db72f3f0481f02b3d7bce4d50bba559165ac971c05c91f675c21b13ca62af86599a7ea115da4bf10d183
SSDEEP

12288:ZSh44rv+koAv0MPaFrkocOh+tt+T46pSKjl2Y8rk6:ZSdSkoaU7cOh+2464KjlR4k6

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  ec90b4de097dfeea48bbc6c0438581da_JaffaCakes118
- Size
  
  557KB
- MD5
  
  ec90b4de097dfeea48bbc6c0438581da
- SHA1
  
  5b21e8efc42ddc679e021e756969ef580aa1e6ac
- SHA256
  
  d5ea7e53bfdace00c01781ef2d026bb264c53803459531fa7ef07d2dbc4158f9
- SHA512
  
  36557c4ced96f74d1f6a13e8e647a0d67420e15a5b19db72f3f0481f02b3d7bce4d50bba559165ac971c05c91f675c21b13ca62af86599a7ea115da4bf10d183
- SSDEEP
  
  12288:ZSh44rv+koAv0MPaFrkocOh+tt+T46pSKjl2Y8rk6:ZSdSkoaU7cOh+2464KjlR4k6
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion