9a1d4b615ee8b23623d2aaca0e92e430e94cc468a35b9c13d6c786edabb64214 | Triage

Sharing

General

Target

eb7ea2dfc6b3aaf57749ad5844a7ced0_JaffaCakes118
Size

124KB
Sample

240410-tzvgasha9x
MD5

eb7ea2dfc6b3aaf57749ad5844a7ced0
SHA1

53c0a0526bc34e90923f72e9d9a6a0650fe29813
SHA256

9a1d4b615ee8b23623d2aaca0e92e430e94cc468a35b9c13d6c786edabb64214
SHA512

5037e1403c01c5dec1e911c6146f7b6831a34a9071c4f51971186e4c82a70cc25b7919da841b1260570bd9fbe716309b0136aa7f57611af92e8d504f92dfd0b7
SSDEEP

3072:ujsliCcrxz7IrSq7lF5IfzpuZHo8WAE5zYUoh:Yrxz7ASqfGrEyzT

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  eb7ea2dfc6b3aaf57749ad5844a7ced0_JaffaCakes118
- Size
  
  124KB
- MD5
  
  eb7ea2dfc6b3aaf57749ad5844a7ced0
- SHA1
  
  53c0a0526bc34e90923f72e9d9a6a0650fe29813
- SHA256
  
  9a1d4b615ee8b23623d2aaca0e92e430e94cc468a35b9c13d6c786edabb64214
- SHA512
  
  5037e1403c01c5dec1e911c6146f7b6831a34a9071c4f51971186e4c82a70cc25b7919da841b1260570bd9fbe716309b0136aa7f57611af92e8d504f92dfd0b7
- SSDEEP
  
  3072:ujsliCcrxz7IrSq7lF5IfzpuZHo8WAE5zYUoh:Yrxz7ASqfGrEyzT
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2