e5145f391624dbe950a63516596baf4875dfe8238647c31d9debe70c6c49df65 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e964f8cb58be52322047ab692bd18d76_JaffaCakes118
Size

78KB
Sample

240409-hlkt6acb5v
MD5

e964f8cb58be52322047ab692bd18d76
SHA1

b1b074596766a8c3edb8785d82d4e91cb191206b
SHA256

e5145f391624dbe950a63516596baf4875dfe8238647c31d9debe70c6c49df65
SHA512

7210f182ad732e5bf6c36e88e084662e2b889a2253a586f4e3df5385ab73babc0eff8834f02371dcc999d923cf8f1f0085e72555a7ae7432843e2aa5c05ab24c
SSDEEP

1536:S7odWaCCZyZCf5+MYf1Pqf7wPhyMDG4rA/+pP2N8eML3gJkovLxMXhF:S7ofCxaAMYfpqfkJPG48/+pOkkOoO

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  e964f8cb58be52322047ab692bd18d76_JaffaCakes118
- Size
  
  78KB
- MD5
  
  e964f8cb58be52322047ab692bd18d76
- SHA1
  
  b1b074596766a8c3edb8785d82d4e91cb191206b
- SHA256
  
  e5145f391624dbe950a63516596baf4875dfe8238647c31d9debe70c6c49df65
- SHA512
  
  7210f182ad732e5bf6c36e88e084662e2b889a2253a586f4e3df5385ab73babc0eff8834f02371dcc999d923cf8f1f0085e72555a7ae7432843e2aa5c05ab24c
- SSDEEP
  
  1536:S7odWaCCZyZCf5+MYf1Pqf7wPhyMDG4rA/+pP2N8eML3gJkovLxMXhF:S7ofCxaAMYfpqfkJPG48/+pOkkOoO
Score

8^/10

persistence
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2