6995d33c86325483963539f9a71c26bd4a22e0a2b110e32b162ad9ce500a9d57 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02491137d5a7a6dc2016c2d0f6f4f5b4_JaffaCakes118
Size

635KB
Sample

240930-ty1a6ayfph
MD5

02491137d5a7a6dc2016c2d0f6f4f5b4
SHA1

3a2145539e586f5ecffca072f62fbc1f46345505
SHA256

6995d33c86325483963539f9a71c26bd4a22e0a2b110e32b162ad9ce500a9d57
SHA512

3ba3bb9d58e2510d53f967e85f835b5c4a593edaf0accc358d33850b59e61dea8f5a3d386d0a6ad193f017fe76625e8545a4b4e9d34af6e0cdd53ad04358c478
SSDEEP

12288:+5KHQ6BF3jRqpKIyoQZLhR/fF3Z4mxxUDqVTVOCo:+5gQ6Bxgps5BhR/fQmXDVTzo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  02491137d5a7a6dc2016c2d0f6f4f5b4_JaffaCakes118
- Size
  
  635KB
- MD5
  
  02491137d5a7a6dc2016c2d0f6f4f5b4
- SHA1
  
  3a2145539e586f5ecffca072f62fbc1f46345505
- SHA256
  
  6995d33c86325483963539f9a71c26bd4a22e0a2b110e32b162ad9ce500a9d57
- SHA512
  
  3ba3bb9d58e2510d53f967e85f835b5c4a593edaf0accc358d33850b59e61dea8f5a3d386d0a6ad193f017fe76625e8545a4b4e9d34af6e0cdd53ad04358c478
- SSDEEP
  
  12288:+5KHQ6BF3jRqpKIyoQZLhR/fF3Z4mxxUDqVTVOCo:+5gQ6Bxgps5BhR/fQmXDVTzo
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2