e0078dc9cec11a41fc786609111b7d23b27b94d81df61b8e7aec10ed49cc4400 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f500505c7cb6b0de507bfa3cabfcff4d_JaffaCakes118
Size

643KB
Sample

240925-c9ep6atdkf
MD5

f500505c7cb6b0de507bfa3cabfcff4d
SHA1

1b4e9e50cde72de65f75f862cd746b0c2ee0291b
SHA256

e0078dc9cec11a41fc786609111b7d23b27b94d81df61b8e7aec10ed49cc4400
SHA512

76416e76a6ecb1796a124a97a7252fa8f5c274fa393e4509831bf26f70a8161a7a805d6a8a73984ff7d80ffbbbcd0942919ef6fbf8b4fcab065415c04bf89ee4
SSDEEP

12288:wGE5anCSEo5vvqLJB1tGFw4WLIo895/ZHzmpkLb+il0:zE5aXp5qHMw67zzmO+il0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f500505c7cb6b0de507bfa3cabfcff4d_JaffaCakes118
- Size
  
  643KB
- MD5
  
  f500505c7cb6b0de507bfa3cabfcff4d
- SHA1
  
  1b4e9e50cde72de65f75f862cd746b0c2ee0291b
- SHA256
  
  e0078dc9cec11a41fc786609111b7d23b27b94d81df61b8e7aec10ed49cc4400
- SHA512
  
  76416e76a6ecb1796a124a97a7252fa8f5c274fa393e4509831bf26f70a8161a7a805d6a8a73984ff7d80ffbbbcd0942919ef6fbf8b4fcab065415c04bf89ee4
- SSDEEP
  
  12288:wGE5anCSEo5vvqLJB1tGFw4WLIo895/ZHzmpkLb+il0:zE5aXp5qHMw67zzmO+il0
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2