2e461f2fb546d47b3ba184d1139f1592dce2c3dd8141db21f1d17b3f05ad5519 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42db4e4700713d833fd58d8d9a50b840_JaffaCakes118
Size

72KB
Sample

241014-svsw8s1gka
MD5

42db4e4700713d833fd58d8d9a50b840
SHA1

a3a8c5eda7662dae74900a8b366c9ba79bdbd1d0
SHA256

2e461f2fb546d47b3ba184d1139f1592dce2c3dd8141db21f1d17b3f05ad5519
SHA512

b9e1be62e3f86eec999289ba6adf68d5918a36ca5fd0b3d879eb0a7d921def303270f97032d2557532eec414131c0f955e133cc08b3541e0e0e948b51c6be03f
SSDEEP

384:N6wayA+1mwnA353BXR+oGfPmfm4MlcTGXdhjwroyY2rebV5O6KgxWb/83BXR+oGW:NpQNwC3BESe4Vqth+0V5vKlE3BEJwRr7

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  42db4e4700713d833fd58d8d9a50b840_JaffaCakes118
- Size
  
  72KB
- MD5
  
  42db4e4700713d833fd58d8d9a50b840
- SHA1
  
  a3a8c5eda7662dae74900a8b366c9ba79bdbd1d0
- SHA256
  
  2e461f2fb546d47b3ba184d1139f1592dce2c3dd8141db21f1d17b3f05ad5519
- SHA512
  
  b9e1be62e3f86eec999289ba6adf68d5918a36ca5fd0b3d879eb0a7d921def303270f97032d2557532eec414131c0f955e133cc08b3541e0e0e948b51c6be03f
- SSDEEP
  
  384:N6wayA+1mwnA353BXR+oGfPmfm4MlcTGXdhjwroyY2rebV5O6KgxWb/83BXR+oGW:NpQNwC3BESe4Vqth+0V5vKlE3BEJwRr7
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion