bd8dd45285c8dc69f46910f3076392a4cffb67d523a40dff324cc4378d848d09 | Triage

Sharing

General

Target

faeead23b7fcdbbd68306a094a77b863_JaffaCakes118
Size

548KB
Sample

240927-z9yjlazgrp
MD5

faeead23b7fcdbbd68306a094a77b863
SHA1

fa79021ca0e27c9885a927a3323581d80da1d46e
SHA256

bd8dd45285c8dc69f46910f3076392a4cffb67d523a40dff324cc4378d848d09
SHA512

1cf383cb23533b1477d80e01f11e19adbce4b8b335e09c245a5383cad3cda8a45ee71928a84570682aa668f440f4352271175539e6a701e4b2174298212ea3e4
SSDEEP

6144:cRO63Q738NwY7AmlGR0uYFpvcrfgcGS52C7pzEYK2iEC4aZbhhIUrx1KO589Mv84:s53Qb8IWGR0LGgDSEEPC4aFIUb5h

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  faeead23b7fcdbbd68306a094a77b863_JaffaCakes118
- Size
  
  548KB
- MD5
  
  faeead23b7fcdbbd68306a094a77b863
- SHA1
  
  fa79021ca0e27c9885a927a3323581d80da1d46e
- SHA256
  
  bd8dd45285c8dc69f46910f3076392a4cffb67d523a40dff324cc4378d848d09
- SHA512
  
  1cf383cb23533b1477d80e01f11e19adbce4b8b335e09c245a5383cad3cda8a45ee71928a84570682aa668f440f4352271175539e6a701e4b2174298212ea3e4
- SSDEEP
  
  6144:cRO63Q738NwY7AmlGR0uYFpvcrfgcGS52C7pzEYK2iEC4aZbhhIUrx1KO589Mv84:s53Qb8IWGR0LGgDSEEPC4aFIUb5h
Score

7^/10

defense_evasion discovery
- Executes dropped EXE
- Impair Defenses: Safe Mode Boot
  defense_evasion
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Safe Mode Boot

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery