019c3deaebf95777452a98667c2a7837f399f04abab5d94143bbe47816bfb884 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f9af535de0ca3ebc3d2f19aa39e9409f_JaffaCakes118
Size

160KB
Sample

240927-es89jsvcjj
MD5

f9af535de0ca3ebc3d2f19aa39e9409f
SHA1

c0339f4fc3abb089910d90f66dc55c525113ce65
SHA256

019c3deaebf95777452a98667c2a7837f399f04abab5d94143bbe47816bfb884
SHA512

8df2c46d9b8f52a8debf04277230f00148b1b4458c1a669e1c716c58442d3d24ede0b0c9da0eb05fd024e4034408a184facb6acdd2d6e24a7efa2b4340de8f51
SSDEEP

3072:h0ACXtCQzFG1jcF/jRGBQ/RHkDmQYvl0D:h0AUCs46SQ/RHkDmhvW

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  f9af535de0ca3ebc3d2f19aa39e9409f_JaffaCakes118
- Size
  
  160KB
- MD5
  
  f9af535de0ca3ebc3d2f19aa39e9409f
- SHA1
  
  c0339f4fc3abb089910d90f66dc55c525113ce65
- SHA256
  
  019c3deaebf95777452a98667c2a7837f399f04abab5d94143bbe47816bfb884
- SHA512
  
  8df2c46d9b8f52a8debf04277230f00148b1b4458c1a669e1c716c58442d3d24ede0b0c9da0eb05fd024e4034408a184facb6acdd2d6e24a7efa2b4340de8f51
- SSDEEP
  
  3072:h0ACXtCQzFG1jcF/jRGBQ/RHkDmQYvl0D:h0AUCs46SQ/RHkDmhvW
Score

10^/10

discovery evasion
- Modifies visiblity of hidden/system files in Explorer
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion