1d24cac6272b95854281e8c24a6f88bd6c3073970e8cfdde802a6f626f1a5d4d | Triage

Sharing

General

Target

f4e216f8f569dc6cc379aea6bd085297_JaffaCakes118
Size

223KB
Sample

240417-dep33sbg93
MD5

f4e216f8f569dc6cc379aea6bd085297
SHA1

f67c0792e42ff485ca00bd8a7970dfc9ce6c01f1
SHA256

1d24cac6272b95854281e8c24a6f88bd6c3073970e8cfdde802a6f626f1a5d4d
SHA512

62f352a651c1212ee40358fe420fbe94a9adbd473c549418a0aa1eb594dc554b75c2067ba0a5bb6307ecf77a6a7ed9b51befbf59946e4a8dd7772a8f7ef7cb58
SSDEEP

6144:ra/u5muWmD74jatDPQ9eeya0YEI3kzMWBZfQ8gnL:rMC74mVQ9eda0YEI3yMMZfQLL

Score

8^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  f4e216f8f569dc6cc379aea6bd085297_JaffaCakes118
- Size
  
  223KB
- MD5
  
  f4e216f8f569dc6cc379aea6bd085297
- SHA1
  
  f67c0792e42ff485ca00bd8a7970dfc9ce6c01f1
- SHA256
  
  1d24cac6272b95854281e8c24a6f88bd6c3073970e8cfdde802a6f626f1a5d4d
- SHA512
  
  62f352a651c1212ee40358fe420fbe94a9adbd473c549418a0aa1eb594dc554b75c2067ba0a5bb6307ecf77a6a7ed9b51befbf59946e4a8dd7772a8f7ef7cb58
- SSDEEP
  
  6144:ra/u5muWmD74jatDPQ9eeya0YEI3kzMWBZfQ8gnL:rMC74mVQ9eda0YEI3yMMZfQLL
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2