d152061bf7d3e5fe13f2420a8a05fef6a5d63097383cf7054bf91be75b6404b7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f8845878c87ff2223e4cf569b5f49c9e_JaffaCakes118
Size

55KB
Sample

240418-w4bk4ace8y
MD5

f8845878c87ff2223e4cf569b5f49c9e
SHA1

8b37ef90a1e248b420fb565bff8b507b69ea2d8d
SHA256

d152061bf7d3e5fe13f2420a8a05fef6a5d63097383cf7054bf91be75b6404b7
SHA512

dbd3e497d33a4b72c70ae12f74749f95e3b376fde4de112cbd86cb6def16591b0da02aa7dbd7944d53f42b13cf7f068c3742509e3e65fecdcc6f93dcd5235aa0
SSDEEP

768:8cv+EQGtmz8coupvmxT90hdpX2mwgnZP+1H+fktVU2kjg70qMqf/1H5qXdnhK:8tctmnouhmxT2haJgF2swHvlq

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f8845878c87ff2223e4cf569b5f49c9e_JaffaCakes118
- Size
  
  55KB
- MD5
  
  f8845878c87ff2223e4cf569b5f49c9e
- SHA1
  
  8b37ef90a1e248b420fb565bff8b507b69ea2d8d
- SHA256
  
  d152061bf7d3e5fe13f2420a8a05fef6a5d63097383cf7054bf91be75b6404b7
- SHA512
  
  dbd3e497d33a4b72c70ae12f74749f95e3b376fde4de112cbd86cb6def16591b0da02aa7dbd7944d53f42b13cf7f068c3742509e3e65fecdcc6f93dcd5235aa0
- SSDEEP
  
  768:8cv+EQGtmz8coupvmxT90hdpX2mwgnZP+1H+fktVU2kjg70qMqf/1H5qXdnhK:8tctmnouhmxT2haJgF2swHvlq
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2