880a441aea649c65f7bd45bf4a4b4c3fcb913feea5bfae46eb8e25a76f9cc426 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f3563585b2577461dc3044952a4ef7e3_JaffaCakes118
Size

25KB
Sample

240416-mx374age97
MD5

f3563585b2577461dc3044952a4ef7e3
SHA1

aebae2d14b3cfb660feb539ca3f04c4fe731f143
SHA256

880a441aea649c65f7bd45bf4a4b4c3fcb913feea5bfae46eb8e25a76f9cc426
SHA512

d64a470c0252af78270796d4e470110613972e2e82cd3fd80cd0fed963a187f89e6bd534ef16ce4832eee7fcb6a775c9c5c116f035de67a5ea5fd32cdb077153
SSDEEP

768:AGzATDOsUv3PYu1uVuS2177vAVM9JVYuGpO+g:o3OsU/PpvlgMtxGe

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  f3563585b2577461dc3044952a4ef7e3_JaffaCakes118
- Size
  
  25KB
- MD5
  
  f3563585b2577461dc3044952a4ef7e3
- SHA1
  
  aebae2d14b3cfb660feb539ca3f04c4fe731f143
- SHA256
  
  880a441aea649c65f7bd45bf4a4b4c3fcb913feea5bfae46eb8e25a76f9cc426
- SHA512
  
  d64a470c0252af78270796d4e470110613972e2e82cd3fd80cd0fed963a187f89e6bd534ef16ce4832eee7fcb6a775c9c5c116f035de67a5ea5fd32cdb077153
- SSDEEP
  
  768:AGzATDOsUv3PYu1uVuS2177vAVM9JVYuGpO+g:o3OsU/PpvlgMtxGe
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2