e9a0718536b4e6d1c6a0ee39882bd1f6e11203f6731f0e3b644df7fa19853753 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b0358bb8a3b703327efb6d09eea8244_JaffaCakes118
Size

30KB
Sample

241002-rasv3azcpq
MD5

0b0358bb8a3b703327efb6d09eea8244
SHA1

6c7be24683f2d1e9f7c77414dc599cb21185d809
SHA256

e9a0718536b4e6d1c6a0ee39882bd1f6e11203f6731f0e3b644df7fa19853753
SHA512

57d56e4b1ce23c3096823062aa53300a9a79a7a4e337689e3e63a12fed7006ca1b50dccc0e30d0f49ae8c55461a3d44e7c67d29359614b2b942318e7a0d9d6fb
SSDEEP

384:ZVL3mXSaZ267N/i1tQOUpZ+GH7lPhcsvYdb3b0rPtAzdH+yOcg:ZVSNZicXl7lPKsAdbrkOzJTq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0b0358bb8a3b703327efb6d09eea8244_JaffaCakes118
- Size
  
  30KB
- MD5
  
  0b0358bb8a3b703327efb6d09eea8244
- SHA1
  
  6c7be24683f2d1e9f7c77414dc599cb21185d809
- SHA256
  
  e9a0718536b4e6d1c6a0ee39882bd1f6e11203f6731f0e3b644df7fa19853753
- SHA512
  
  57d56e4b1ce23c3096823062aa53300a9a79a7a4e337689e3e63a12fed7006ca1b50dccc0e30d0f49ae8c55461a3d44e7c67d29359614b2b942318e7a0d9d6fb
- SSDEEP
  
  384:ZVL3mXSaZ267N/i1tQOUpZ+GH7lPhcsvYdb3b0rPtAzdH+yOcg:ZVSNZicXl7lPKsAdbrkOzJTq
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2