645ba34a610e83f812473b6dd8f11401b5fee119afaa4086fbcac4344f6a682d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebf998f965322c4309fae723b7a996a3_JaffaCakes118
Size

4.1MB
Sample

240410-zstjbabc94
MD5

ebf998f965322c4309fae723b7a996a3
SHA1

068b921df854e9b13c8094528ad5d6f8c87153cf
SHA256

645ba34a610e83f812473b6dd8f11401b5fee119afaa4086fbcac4344f6a682d
SHA512

85ffe32d20095eb08edffeee3fcf7da9c1081cbc217c6b9b37d231713469a4ee1d04e78b450d9817d50a1ef56cc91df6383f3e86ffa862f699b676e3ae14581f
SSDEEP

98304:v10dBAEoDCqpjUMVvMOSo5QAXZx7SnE3jIes+KU4Jj:8xCzf9MOSSQ+xRMestU45

Score

7^/10

persistence pyinstaller

Malware Config

Targets

- Target
  
  ebf998f965322c4309fae723b7a996a3_JaffaCakes118
- Size
  
  4.1MB
- MD5
  
  ebf998f965322c4309fae723b7a996a3
- SHA1
  
  068b921df854e9b13c8094528ad5d6f8c87153cf
- SHA256
  
  645ba34a610e83f812473b6dd8f11401b5fee119afaa4086fbcac4344f6a682d
- SHA512
  
  85ffe32d20095eb08edffeee3fcf7da9c1081cbc217c6b9b37d231713469a4ee1d04e78b450d9817d50a1ef56cc91df6383f3e86ffa862f699b676e3ae14581f
- SSDEEP
  
  98304:v10dBAEoDCqpjUMVvMOSo5QAXZx7SnE3jIes+KU4Jj:8xCzf9MOSSQ+xRMestU45
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2