ea4bae2cc59c73bdb47a366396cee81169bc3316b11ebc3b55411b56da328961 | Triage

Sharing

General

Target

06522e44321ae956bb17814257821f91_JaffaCakes118
Size

250KB
Sample

241001-spj25swdmj
MD5

06522e44321ae956bb17814257821f91
SHA1

d47a4c9c5d6a60dc653d605b7e9c2ddb16f16a1e
SHA256

ea4bae2cc59c73bdb47a366396cee81169bc3316b11ebc3b55411b56da328961
SHA512

6961e675b66c7d845ca81acd973656375e12aae73d83d124a6feb93408bf41ad1e4f00f2e4569868a9f15bcd69dc9c3382647c03f24c6d0d3f6b818a5c5de9e2
SSDEEP

6144:5Hb1tZxRirv7dq5DaTTw85LTvzcuJhoxr2o:5HbBxArv7UETVJzNGT

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  06522e44321ae956bb17814257821f91_JaffaCakes118
- Size
  
  250KB
- MD5
  
  06522e44321ae956bb17814257821f91
- SHA1
  
  d47a4c9c5d6a60dc653d605b7e9c2ddb16f16a1e
- SHA256
  
  ea4bae2cc59c73bdb47a366396cee81169bc3316b11ebc3b55411b56da328961
- SHA512
  
  6961e675b66c7d845ca81acd973656375e12aae73d83d124a6feb93408bf41ad1e4f00f2e4569868a9f15bcd69dc9c3382647c03f24c6d0d3f6b818a5c5de9e2
- SSDEEP
  
  6144:5Hb1tZxRirv7dq5DaTTw85LTvzcuJhoxr2o:5HbBxArv7UETVJzNGT
Score

10^/10

discovery evasion
- Modifies security service
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion