22a1c1cbc046cc89b714fe065aec185b40b7cd69cd92460b1772f43267c4deff | Triage

Sharing

General

Target

10ac016ffe6eab5dd8e800813db0e620_JaffaCakes118
Size

72KB
Sample

241003-1yessasekf
MD5

10ac016ffe6eab5dd8e800813db0e620
SHA1

5c4c6387dd6ecf46115b8530485e417cb8400d48
SHA256

22a1c1cbc046cc89b714fe065aec185b40b7cd69cd92460b1772f43267c4deff
SHA512

53b601bfd9319eb55450b4075d34a8f4a96635ea7664a0654dd500dac956af1b262a90f791580b1bccf609c80072a979cac5e4a460ecb842d446ac6c079665b4
SSDEEP

384:N6wayA+1mwnA353BXR+oGfPmfm4MlcTGXdhjwroyY2rebV5O6KgxWb/83BXR+oG0:NpQNwC3BESe4Vqth+0V5vKlE3BEJwRrJ

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  10ac016ffe6eab5dd8e800813db0e620_JaffaCakes118
- Size
  
  72KB
- MD5
  
  10ac016ffe6eab5dd8e800813db0e620
- SHA1
  
  5c4c6387dd6ecf46115b8530485e417cb8400d48
- SHA256
  
  22a1c1cbc046cc89b714fe065aec185b40b7cd69cd92460b1772f43267c4deff
- SHA512
  
  53b601bfd9319eb55450b4075d34a8f4a96635ea7664a0654dd500dac956af1b262a90f791580b1bccf609c80072a979cac5e4a460ecb842d446ac6c079665b4
- SSDEEP
  
  384:N6wayA+1mwnA353BXR+oGfPmfm4MlcTGXdhjwroyY2rebV5O6KgxWb/83BXR+oG0:NpQNwC3BESe4Vqth+0V5vKlE3BEJwRrJ
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion