2212e5649fc96960efeb046aca0116ebe5f48dd85e26e021696c7d9b6d669fca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fc3fcc9e9d746f269af3d5e0960c11c7_JaffaCakes118
Size

18KB
Sample

240420-jdnfrabf95
MD5

fc3fcc9e9d746f269af3d5e0960c11c7
SHA1

e458f8d7ee1ff5fd579205abfc124bbeca0a0432
SHA256

2212e5649fc96960efeb046aca0116ebe5f48dd85e26e021696c7d9b6d669fca
SHA512

2a92e87550f79424e4d7a496afbdad449826884fc29d8f63ae5a19d56dd251dfb4480ee2f2bf34c591460ab2cee46c7c21c024a5f038d8e7b2b360ea2d51ac5d
SSDEEP

384:pwysQg9I4A0bWmCZzbJ7yCbKc8pPYqwx5SiPeGeqLrnQjCzigJC:4Qg9t7HCZP7z0NwiiPTdnxPJC

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  fc3fcc9e9d746f269af3d5e0960c11c7_JaffaCakes118
- Size
  
  18KB
- MD5
  
  fc3fcc9e9d746f269af3d5e0960c11c7
- SHA1
  
  e458f8d7ee1ff5fd579205abfc124bbeca0a0432
- SHA256
  
  2212e5649fc96960efeb046aca0116ebe5f48dd85e26e021696c7d9b6d669fca
- SHA512
  
  2a92e87550f79424e4d7a496afbdad449826884fc29d8f63ae5a19d56dd251dfb4480ee2f2bf34c591460ab2cee46c7c21c024a5f038d8e7b2b360ea2d51ac5d
- SSDEEP
  
  384:pwysQg9I4A0bWmCZzbJ7yCbKc8pPYqwx5SiPeGeqLrnQjCzigJC:4Qg9t7HCZP7z0NwiiPTdnxPJC
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2