241c324b86783945423e169d055bcee0db34697a4f559cd5ded11bc19199ccb6 | Triage

Sharing

General

Target

f60a1ffc51168749a91b710f145e73bd_JaffaCakes118
Size

13KB
Sample

240417-scx38sdc32
MD5

f60a1ffc51168749a91b710f145e73bd
SHA1

55dda14fecf7be873c182e16e9716227c963a189
SHA256

241c324b86783945423e169d055bcee0db34697a4f559cd5ded11bc19199ccb6
SHA512

23ec773077d6eec5fdbe7b34639ca1f0a2ec1bddd518e1e0761d7665c6e17629561becd1dfff9ad3a0089121c3b4f7e91fac5269872c8e3c7972a1f5ea89b0ef
SSDEEP

384:JPIXVNZdwN7RmXuc9HqZdL7rMoqLRR9xPE:6XVNpecxqZ97rMoMk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f60a1ffc51168749a91b710f145e73bd_JaffaCakes118
- Size
  
  13KB
- MD5
  
  f60a1ffc51168749a91b710f145e73bd
- SHA1
  
  55dda14fecf7be873c182e16e9716227c963a189
- SHA256
  
  241c324b86783945423e169d055bcee0db34697a4f559cd5ded11bc19199ccb6
- SHA512
  
  23ec773077d6eec5fdbe7b34639ca1f0a2ec1bddd518e1e0761d7665c6e17629561becd1dfff9ad3a0089121c3b4f7e91fac5269872c8e3c7972a1f5ea89b0ef
- SSDEEP
  
  384:JPIXVNZdwN7RmXuc9HqZdL7rMoqLRR9xPE:6XVNpecxqZ97rMoMk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2