dd3670b94ad1a411183cc121c76abdaef5a077db7847a3c2a98641ffb4ee24de | Triage

Sharing

General

Target

eef95c5a616892ab1d3fa0f421c5cae0_JaffaCakes118
Size

97KB
Sample

240921-dt217asfqk
MD5

eef95c5a616892ab1d3fa0f421c5cae0
SHA1

e96f5f4241b1a39dea4628ee2fe7f4adf29e66a5
SHA256

dd3670b94ad1a411183cc121c76abdaef5a077db7847a3c2a98641ffb4ee24de
SHA512

ad91bc1f16a952d7ca783abe04e195fee286126e24d759d04900a92e2a87c6e17cbbf5e518ec3cacbb5bf5344cb346fe775ea003f7580c441ec4a57f6ef12869
SSDEEP

3072:9+eYMX7jf+i6JJ+2aylNK0qq/Ekqq/4Lb9XPc2+/px:wXDi6y2/l00qvkqbLpc2Q

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  eef95c5a616892ab1d3fa0f421c5cae0_JaffaCakes118
- Size
  
  97KB
- MD5
  
  eef95c5a616892ab1d3fa0f421c5cae0
- SHA1
  
  e96f5f4241b1a39dea4628ee2fe7f4adf29e66a5
- SHA256
  
  dd3670b94ad1a411183cc121c76abdaef5a077db7847a3c2a98641ffb4ee24de
- SHA512
  
  ad91bc1f16a952d7ca783abe04e195fee286126e24d759d04900a92e2a87c6e17cbbf5e518ec3cacbb5bf5344cb346fe775ea003f7580c441ec4a57f6ef12869
- SSDEEP
  
  3072:9+eYMX7jf+i6JJ+2aylNK0qq/Ekqq/4Lb9XPc2+/px:wXDi6y2/l00qvkqbLpc2Q
Score

10^/10

discovery evasion
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion