58193f5f921cf60169b2b11cd2efbf62a98246f86b7adcd7a3ecb94776084206 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

088aeea14632854466f05cda4deef1e2_JaffaCakes118
Size

72KB
Sample

241002-dfvpystelq
MD5

088aeea14632854466f05cda4deef1e2
SHA1

9c6fdc2f6d9f34034686ff8669d4a2352c548f55
SHA256

58193f5f921cf60169b2b11cd2efbf62a98246f86b7adcd7a3ecb94776084206
SHA512

89a995e898c6da4d1ea540c4771c71421d36430e87c7ea6800e428105abe59e03dbac40db1c4b88ba260ee8b53e8bff766d8a18a34c50968e86b1208a77c023e
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2m:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPS

Score

10^/10

discovery evasion persistence

Malware Config

Targets

- Target
  
  088aeea14632854466f05cda4deef1e2_JaffaCakes118
- Size
  
  72KB
- MD5
  
  088aeea14632854466f05cda4deef1e2
- SHA1
  
  9c6fdc2f6d9f34034686ff8669d4a2352c548f55
- SHA256
  
  58193f5f921cf60169b2b11cd2efbf62a98246f86b7adcd7a3ecb94776084206
- SHA512
  
  89a995e898c6da4d1ea540c4771c71421d36430e87c7ea6800e428105abe59e03dbac40db1c4b88ba260ee8b53e8bff766d8a18a34c50968e86b1208a77c023e
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2m:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPS
Score

10^/10

discovery evasion persistence
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Power Settings
  powercfg controls all configurable power system settings on a Windows system and can be abused to prevent an infected host from locking or shutting down.
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Power Settings

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence

behavioral2

discoveryevasion