151d87625af2d66affc77bce07749f5327bd95eb71e9400f31fc827e2f86593c | Triage

Sharing

General

Target

f8c8261d15ac899ed7ca7da785be2f69_JaffaCakes118
Size

45KB
Sample

240418-z9lj2agd6w
MD5

f8c8261d15ac899ed7ca7da785be2f69
SHA1

1e9e493f8a1b1d49cb923e1b181b63e38a3cf778
SHA256

151d87625af2d66affc77bce07749f5327bd95eb71e9400f31fc827e2f86593c
SHA512

9c70789dfaae952d44f303185973ce34f5b28d777fe0813156af16c3f581ab8b5b8ee9f8e5f49ffeeaf444a80d98d1e4c27485a0d07e448922aee7e33040a9b9
SSDEEP

768:53T6/tU/6Tv9ReFciJbatIXzlQIscQm56WDG/Xs9J1QjLsUcraA2:BT6/tU/6TLeFY2hE1509J6jLFcrF2

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f8c8261d15ac899ed7ca7da785be2f69_JaffaCakes118
- Size
  
  45KB
- MD5
  
  f8c8261d15ac899ed7ca7da785be2f69
- SHA1
  
  1e9e493f8a1b1d49cb923e1b181b63e38a3cf778
- SHA256
  
  151d87625af2d66affc77bce07749f5327bd95eb71e9400f31fc827e2f86593c
- SHA512
  
  9c70789dfaae952d44f303185973ce34f5b28d777fe0813156af16c3f581ab8b5b8ee9f8e5f49ffeeaf444a80d98d1e4c27485a0d07e448922aee7e33040a9b9
- SSDEEP
  
  768:53T6/tU/6Tv9ReFciJbatIXzlQIscQm56WDG/Xs9J1QjLsUcraA2:BT6/tU/6TLeFY2hE1509J6jLFcrF2
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Modifies Installed Components in the registry
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2