df3dceacafe3d541d1b5f043683daa6eeb1a2cc39f35672ae2b37d2043de4107 | Triage

Sharing

General

Target

44e9a2336b3aa291cc7b9ca2bb0b6b5c_JaffaCakes118
Size

173KB
Sample

241015-ap8fmatfrf
MD5

44e9a2336b3aa291cc7b9ca2bb0b6b5c
SHA1

48b299b249bf87bad712b90c7cca53f9c4ea0574
SHA256

df3dceacafe3d541d1b5f043683daa6eeb1a2cc39f35672ae2b37d2043de4107
SHA512

8439475fa42c4972a8b894a0c8644a062decbf16ee103346aba1acbba1ef87da921db5ecad8b583538d0883c23a6f9a3b4446b8ff36080dde2604680f7fea709
SSDEEP

3072:uDTk3IgwsWPGQOw5GAUVhIVCXGH9fiyqGMM3NYbg1qGI9LgZQBD:6TkYgkDlUVhIUXg9V6/bAqEZQBD

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  44e9a2336b3aa291cc7b9ca2bb0b6b5c_JaffaCakes118
- Size
  
  173KB
- MD5
  
  44e9a2336b3aa291cc7b9ca2bb0b6b5c
- SHA1
  
  48b299b249bf87bad712b90c7cca53f9c4ea0574
- SHA256
  
  df3dceacafe3d541d1b5f043683daa6eeb1a2cc39f35672ae2b37d2043de4107
- SHA512
  
  8439475fa42c4972a8b894a0c8644a062decbf16ee103346aba1acbba1ef87da921db5ecad8b583538d0883c23a6f9a3b4446b8ff36080dde2604680f7fea709
- SSDEEP
  
  3072:uDTk3IgwsWPGQOw5GAUVhIVCXGH9fiyqGMM3NYbg1qGI9LgZQBD:6TkYgkDlUVhIUXg9V6/bAqEZQBD
Score

7^/10

defense_evasion discovery
- Deletes itself
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery