2470e70583d750270b553d8d61e6a10831fb3dfcc9b5fc702fbc9a32b1407667 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e7700dbda55cb2f9b9e17d61e1c3014a_JaffaCakes118
Size

78KB
Sample

240408-pd98eagh49
MD5

e7700dbda55cb2f9b9e17d61e1c3014a
SHA1

0a2f8c076d2610ee28e95fa0638bed59d444e002
SHA256

2470e70583d750270b553d8d61e6a10831fb3dfcc9b5fc702fbc9a32b1407667
SHA512

05a9a34d3a092bfa8d4d788cf35d7fe63199755cb060b976d8ca86f3afb06c7877a3ea284bd8ae37824bcaea063b180a76aacdd8f84fcd468000b1b2e68f32d4
SSDEEP

1536:cWG/FI34wTFgZ2h93DS8EH7oHzNMLtKXhhRcmU1DpgOAoKJlIK:qI34wTFTh93k7oHCLcvRspBAoKJlIK

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  e7700dbda55cb2f9b9e17d61e1c3014a_JaffaCakes118
- Size
  
  78KB
- MD5
  
  e7700dbda55cb2f9b9e17d61e1c3014a
- SHA1
  
  0a2f8c076d2610ee28e95fa0638bed59d444e002
- SHA256
  
  2470e70583d750270b553d8d61e6a10831fb3dfcc9b5fc702fbc9a32b1407667
- SHA512
  
  05a9a34d3a092bfa8d4d788cf35d7fe63199755cb060b976d8ca86f3afb06c7877a3ea284bd8ae37824bcaea063b180a76aacdd8f84fcd468000b1b2e68f32d4
- SSDEEP
  
  1536:cWG/FI34wTFgZ2h93DS8EH7oHzNMLtKXhhRcmU1DpgOAoKJlIK:qI34wTFTh93k7oHCLcvRspBAoKJlIK
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2