91a2c4081d6230d2e4e47f319dee2631e9a4d2ea328ae35371c5ffb17301a37f | Triage

Sharing

General

Target

f4f2afe58914aafe11b2a9625bc38879_JaffaCakes118
Size

24KB
Sample

240417-d5y4nseb3z
MD5

f4f2afe58914aafe11b2a9625bc38879
SHA1

d8f61a2a465db3b8df5952b5362efd3070a7c822
SHA256

91a2c4081d6230d2e4e47f319dee2631e9a4d2ea328ae35371c5ffb17301a37f
SHA512

6cbb39661090fb6017d25fdd1967b603cae10f13e7c973c52a6bcfe61399794851f2c7f0b69af023c9b679336fdadcd29c4e2f218e172f2e05aa60a649576bd2
SSDEEP

768:O7tXiE1oZlpJDEeBKm2uns20mKN8ZUUSAKQ:O5i7lLDEo2f20AqUSAKQ

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  f4f2afe58914aafe11b2a9625bc38879_JaffaCakes118
- Size
  
  24KB
- MD5
  
  f4f2afe58914aafe11b2a9625bc38879
- SHA1
  
  d8f61a2a465db3b8df5952b5362efd3070a7c822
- SHA256
  
  91a2c4081d6230d2e4e47f319dee2631e9a4d2ea328ae35371c5ffb17301a37f
- SHA512
  
  6cbb39661090fb6017d25fdd1967b603cae10f13e7c973c52a6bcfe61399794851f2c7f0b69af023c9b679336fdadcd29c4e2f218e172f2e05aa60a649576bd2
- SSDEEP
  
  768:O7tXiE1oZlpJDEeBKm2uns20mKN8ZUUSAKQ:O5i7lLDEo2f20AqUSAKQ
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2