419c560d65a71085e43275a4aaa416d0c81d473a6adcaa394149effe2b138640 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fec909fc53fad8c18a434f6901aaf929_JaffaCakes118
Size

72KB
Sample

240929-sjycksygmr
MD5

fec909fc53fad8c18a434f6901aaf929
SHA1

434dbf7c40343e17da12fc917ca39ec554ab4a2b
SHA256

419c560d65a71085e43275a4aaa416d0c81d473a6adcaa394149effe2b138640
SHA512

43fbc34fcaaaef605c770244e5cb7a468aed330869182927f0edc411f2091efffb416615cfec7b9586b7c01181f471952c694467b76f4dfededc6dd128496501
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2q:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrW

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  fec909fc53fad8c18a434f6901aaf929_JaffaCakes118
- Size
  
  72KB
- MD5
  
  fec909fc53fad8c18a434f6901aaf929
- SHA1
  
  434dbf7c40343e17da12fc917ca39ec554ab4a2b
- SHA256
  
  419c560d65a71085e43275a4aaa416d0c81d473a6adcaa394149effe2b138640
- SHA512
  
  43fbc34fcaaaef605c770244e5cb7a468aed330869182927f0edc411f2091efffb416615cfec7b9586b7c01181f471952c694467b76f4dfededc6dd128496501
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2q:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrW
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion