b9594801ab726011ce0920fd9beba15c32f3069665da805ae43e1b551d65d97f | Triage

Sharing

General

Target

edbf2d64da1fd3385bfeeda78ee5565d_JaffaCakes118
Size

22KB
Sample

240920-rcmrtszerf
MD5

edbf2d64da1fd3385bfeeda78ee5565d
SHA1

c794152d20baf0a7ea98748df78cca8442faf85b
SHA256

b9594801ab726011ce0920fd9beba15c32f3069665da805ae43e1b551d65d97f
SHA512

5fe91233675dda741bd828d7a9c4469c5069b980cc5f9cdb761ac8f98eaf2a7f30ba4733bee0053d286f17d9553af276d918f7e0c8fb6dc934e126483e5e56e2
SSDEEP

384:Piv9NM67LuJP7xaQ0xh5K+BrIyucYetD++xh1iyzknYjc5SamYhNcngkv:P0fMrL0xhNBBYetDxhY1Yjcw3vngY

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  edbf2d64da1fd3385bfeeda78ee5565d_JaffaCakes118
- Size
  
  22KB
- MD5
  
  edbf2d64da1fd3385bfeeda78ee5565d
- SHA1
  
  c794152d20baf0a7ea98748df78cca8442faf85b
- SHA256
  
  b9594801ab726011ce0920fd9beba15c32f3069665da805ae43e1b551d65d97f
- SHA512
  
  5fe91233675dda741bd828d7a9c4469c5069b980cc5f9cdb761ac8f98eaf2a7f30ba4733bee0053d286f17d9553af276d918f7e0c8fb6dc934e126483e5e56e2
- SSDEEP
  
  384:Piv9NM67LuJP7xaQ0xh5K+BrIyucYetD++xh1iyzknYjc5SamYhNcngkv:P0fMrL0xhNBBYetDxhY1Yjcw3vngY
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion