14a36ffc2deb188712193388b59c00f8a5a5d54b923e7df5d0839796f2eb09cf | Triage

Sharing

General

Target

f7c7390e02cfa60093ca875eac138311_JaffaCakes118
Size

33KB
Sample

240418-l8g9bsbd2t
MD5

f7c7390e02cfa60093ca875eac138311
SHA1

2a457e3758437ba53b83682ffb31aab0b16e0ac7
SHA256

14a36ffc2deb188712193388b59c00f8a5a5d54b923e7df5d0839796f2eb09cf
SHA512

e071f11a34d79c78375f0dbfc6bacf8873d70e6e9d7fb60276bad06daf8fa5dcaf707d19a6424000919bc832e2fa9e61b82bd5e4d2a80de524d1e51ad0895539
SSDEEP

384:CsfaKYmTz9Wmn+RDwVXtUAfTvxTP3oxX9BkLyi3BYoyxqFbHqT3CMgIwbKbt:JhNTzsm+SFTZUxtBkp3BYooIu0IdR

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  f7c7390e02cfa60093ca875eac138311_JaffaCakes118
- Size
  
  33KB
- MD5
  
  f7c7390e02cfa60093ca875eac138311
- SHA1
  
  2a457e3758437ba53b83682ffb31aab0b16e0ac7
- SHA256
  
  14a36ffc2deb188712193388b59c00f8a5a5d54b923e7df5d0839796f2eb09cf
- SHA512
  
  e071f11a34d79c78375f0dbfc6bacf8873d70e6e9d7fb60276bad06daf8fa5dcaf707d19a6424000919bc832e2fa9e61b82bd5e4d2a80de524d1e51ad0895539
- SSDEEP
  
  384:CsfaKYmTz9Wmn+RDwVXtUAfTvxTP3oxX9BkLyi3BYoyxqFbHqT3CMgIwbKbt:JhNTzsm+SFTZUxtBkp3BYooIu0IdR
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2