56ab7a90f4e47dfadafa1252ad236ac74cfc397e5fc9d70e484d916d9faab2d3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef63789ad1a4367c08d08e09428155c0_JaffaCakes118
Size

160KB
Sample

240921-j4p29ssfpj
MD5

ef63789ad1a4367c08d08e09428155c0
SHA1

66516a3abdb5c7c6b0a57ececfc1f215a0399cfb
SHA256

56ab7a90f4e47dfadafa1252ad236ac74cfc397e5fc9d70e484d916d9faab2d3
SHA512

07d7a2300bb7107883eeae6447ed9bd37c32a4b24b60ccd4240f7b5b5b4533f109e790e11a9baaddd4e13d4ca159f2a97358a83e52f8e967c971d9afb7da085b
SSDEEP

3072:h0ACXtCQzFG1jcF/jRGBQ/RHkDmQYvl0M:h0AUCs46SQ/RHkDmhvR

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  ef63789ad1a4367c08d08e09428155c0_JaffaCakes118
- Size
  
  160KB
- MD5
  
  ef63789ad1a4367c08d08e09428155c0
- SHA1
  
  66516a3abdb5c7c6b0a57ececfc1f215a0399cfb
- SHA256
  
  56ab7a90f4e47dfadafa1252ad236ac74cfc397e5fc9d70e484d916d9faab2d3
- SHA512
  
  07d7a2300bb7107883eeae6447ed9bd37c32a4b24b60ccd4240f7b5b5b4533f109e790e11a9baaddd4e13d4ca159f2a97358a83e52f8e967c971d9afb7da085b
- SSDEEP
  
  3072:h0ACXtCQzFG1jcF/jRGBQ/RHkDmQYvl0M:h0AUCs46SQ/RHkDmhvR
Score

10^/10

discovery evasion
- Modifies visiblity of hidden/system files in Explorer
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion