88850ceb48f96140e0f925bb8b758cd7daa2e566ea1f1d248895fdf82241d847 | Triage

Sharing

General

Target

14b7649a52f7192cc47b3c6848763d62_JaffaCakes118
Size

188KB
Sample

241004-ykk2jashjp
MD5

14b7649a52f7192cc47b3c6848763d62
SHA1

8db772be994e79818e67a247ba6b143f82071545
SHA256

88850ceb48f96140e0f925bb8b758cd7daa2e566ea1f1d248895fdf82241d847
SHA512

8ee8b02bc995900ede2592e17503d68476d9b6e63899e941cbd494c0919d7ebf907b6f4e4bf393abced28e3e8bf5ddf31983463fa3e90a23f92161765b03ba29
SSDEEP

3072:fEJXTtgD6db1teDy9VusR1enuYbcrBLCfEgloIvDaNtEmidLPUduKkf0eA6z:8J5geztee9FR1eTboMM7IeDz7ksY

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  14b7649a52f7192cc47b3c6848763d62_JaffaCakes118
- Size
  
  188KB
- MD5
  
  14b7649a52f7192cc47b3c6848763d62
- SHA1
  
  8db772be994e79818e67a247ba6b143f82071545
- SHA256
  
  88850ceb48f96140e0f925bb8b758cd7daa2e566ea1f1d248895fdf82241d847
- SHA512
  
  8ee8b02bc995900ede2592e17503d68476d9b6e63899e941cbd494c0919d7ebf907b6f4e4bf393abced28e3e8bf5ddf31983463fa3e90a23f92161765b03ba29
- SSDEEP
  
  3072:fEJXTtgD6db1teDy9VusR1enuYbcrBLCfEgloIvDaNtEmidLPUduKkf0eA6z:8J5geztee9FR1eTboMM7IeDz7ksY
Score

7^/10

defense_evasion discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2