fe4b7570a04c0109f426bcb2b4d474162dade55b2b25bda8296f3112b914c961 | Triage

Sharing

General

Target

549a41de430fe58e3ebc36155de0db80_JaffaCakes118
Size

76KB
Sample

241018-bb4qyszcjr
MD5

549a41de430fe58e3ebc36155de0db80
SHA1

1504a47206a3e517938c81fb59eeb64c3073e435
SHA256

fe4b7570a04c0109f426bcb2b4d474162dade55b2b25bda8296f3112b914c961
SHA512

c12620de3f595b18aa94629fb0b37a0dcdd43c28d00794b591620614bacd802a083ac8163d46e9084bfb373fa7748e0a849994b801e7203c47adffa4a6fbcf38
SSDEEP

768:ZXldqUSJ3u1NuNNJj8e8+xO/2ErQ+vnMeokYfOsYi9dJ7yZTFyHA+E23zNdoTAWb:Z+TuSNNF8xFBkenNsY4KFyH33z/VWk4

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  549a41de430fe58e3ebc36155de0db80_JaffaCakes118
- Size
  
  76KB
- MD5
  
  549a41de430fe58e3ebc36155de0db80
- SHA1
  
  1504a47206a3e517938c81fb59eeb64c3073e435
- SHA256
  
  fe4b7570a04c0109f426bcb2b4d474162dade55b2b25bda8296f3112b914c961
- SHA512
  
  c12620de3f595b18aa94629fb0b37a0dcdd43c28d00794b591620614bacd802a083ac8163d46e9084bfb373fa7748e0a849994b801e7203c47adffa4a6fbcf38
- SSDEEP
  
  768:ZXldqUSJ3u1NuNNJj8e8+xO/2ErQ+vnMeokYfOsYi9dJ7yZTFyHA+E23zNdoTAWb:Z+TuSNNF8xFBkenNsY4KFyH33z/VWk4
Score

7^/10

defense_evasion discovery
- Deletes itself
- Executes dropped EXE
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery