1e50e8d67818e4c79de607f70f24ddbc7f8dde767de6b3c4d7b146e220470229 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5e025ab3ed68e6360fd554cb988d22f_JaffaCakes118
Size

46KB
Sample

240417-qnzp4ahc99
MD5

f5e025ab3ed68e6360fd554cb988d22f
SHA1

563bc02c2423968898256d21ee4f08054127a86b
SHA256

1e50e8d67818e4c79de607f70f24ddbc7f8dde767de6b3c4d7b146e220470229
SHA512

60930d8ad498e36c40f49d56aa11e0040a4bbe1ce47a43a125bcb472b943f768d22a26124adcb91ba7b4aff7ee3c0c4fcd57b7666f4dd818181dcc4b5b2f72eb
SSDEEP

768:LCqdaLotERAQ/zLeeH4kLl9vrq9sTdj9uKOcmMjwJTh1WjFoOsJYS6wm5hY9m6:LCqdDt6jz3HS9sTN9uKO2wJT4oRYJ7h+

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  f5e025ab3ed68e6360fd554cb988d22f_JaffaCakes118
- Size
  
  46KB
- MD5
  
  f5e025ab3ed68e6360fd554cb988d22f
- SHA1
  
  563bc02c2423968898256d21ee4f08054127a86b
- SHA256
  
  1e50e8d67818e4c79de607f70f24ddbc7f8dde767de6b3c4d7b146e220470229
- SHA512
  
  60930d8ad498e36c40f49d56aa11e0040a4bbe1ce47a43a125bcb472b943f768d22a26124adcb91ba7b4aff7ee3c0c4fcd57b7666f4dd818181dcc4b5b2f72eb
- SSDEEP
  
  768:LCqdaLotERAQ/zLeeH4kLl9vrq9sTdj9uKOcmMjwJTh1WjFoOsJYS6wm5hY9m6:LCqdDt6jz3HS9sTN9uKO2wJT4oRYJ7h+
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2