General

  • Target

    8157b685c864ed653938a86a18c61aeb_JaffaCakes118

  • Size

    106KB

  • Sample

    241031-djrsgaydlq

  • MD5

    8157b685c864ed653938a86a18c61aeb

  • SHA1

    c8de3b88ba1c2cdcfce054b2a18f08dbc61d4753

  • SHA256

    b58b79e854bc26f935d23d1d665021c1551be54ef1af660a8d4c37ef4111aec3

  • SHA512

    a23e173881051ded42aea6353dc8a555c774a88750c9b9599b91e49c9a19d34f670eacbf160612ade2375b5eb5efa21102f3d60bd02fb05c787f81afa72ec3d1

  • SSDEEP

    3072:gkWMvzjIc4Cw0BkxofyHckq6VqVMe7ws/Y:gyvzjIcukvyHZqlb5Y

Malware Config

Targets

    • Target

      8157b685c864ed653938a86a18c61aeb_JaffaCakes118

    • Size

      106KB

    • MD5

      8157b685c864ed653938a86a18c61aeb

    • SHA1

      c8de3b88ba1c2cdcfce054b2a18f08dbc61d4753

    • SHA256

      b58b79e854bc26f935d23d1d665021c1551be54ef1af660a8d4c37ef4111aec3

    • SHA512

      a23e173881051ded42aea6353dc8a555c774a88750c9b9599b91e49c9a19d34f670eacbf160612ade2375b5eb5efa21102f3d60bd02fb05c787f81afa72ec3d1

    • SSDEEP

      3072:gkWMvzjIc4Cw0BkxofyHckq6VqVMe7ws/Y:gyvzjIcukvyHZqlb5Y

    • Deletes itself

    • Executes dropped EXE

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks