9fd9d6ffb064e6b23e604f8e2c1a4986ce60862bcee5715d084eb1f2e2a1b956 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02f7619a0b453ba6128402defd872060_JaffaCakes118
Size

72KB
Sample

240930-ybmh1a1hrl
MD5

02f7619a0b453ba6128402defd872060
SHA1

3625f996067cede9133b409eb673125e310841eb
SHA256

9fd9d6ffb064e6b23e604f8e2c1a4986ce60862bcee5715d084eb1f2e2a1b956
SHA512

33b2a16610bc5ba32d06b947d11fdd7a6b4391dba13667e243b30c29ad4b1bae1ddae7e2bf90a1cbfc1378b2a4433cb71abe9552767cb03039bdeca57c0dc307
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2x:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPF

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  02f7619a0b453ba6128402defd872060_JaffaCakes118
- Size
  
  72KB
- MD5
  
  02f7619a0b453ba6128402defd872060
- SHA1
  
  3625f996067cede9133b409eb673125e310841eb
- SHA256
  
  9fd9d6ffb064e6b23e604f8e2c1a4986ce60862bcee5715d084eb1f2e2a1b956
- SHA512
  
  33b2a16610bc5ba32d06b947d11fdd7a6b4391dba13667e243b30c29ad4b1bae1ddae7e2bf90a1cbfc1378b2a4433cb71abe9552767cb03039bdeca57c0dc307
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2x:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPF
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion