04b8c86b3e560eb907cc2f887df1330dfedc422a0ed0393041899c4fc93c8bcf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fc454ad3a691a178a48a0bfe874e6774_JaffaCakes118
Size

63KB
Sample

240420-jmbtbace4t
MD5

fc454ad3a691a178a48a0bfe874e6774
SHA1

cb1ce7912232011f58bde6adde6b275717864546
SHA256

04b8c86b3e560eb907cc2f887df1330dfedc422a0ed0393041899c4fc93c8bcf
SHA512

720e2d9aeb2d7f98afc050e2980f737726b9a3d3b30741cdace5029ac3338fca1b55acaebfe2d987b042c25c230065646291c24db1ff5d8a8937e5d1a68b8d43
SSDEEP

768:tdGvJuh51O/szqazvtUas2vBJ32OF9QGtz/XMYppmzoapOGcIqAN8pFrKD0BuTlb:tchqbzZtFf8Ul5acGAIIGDlk6l

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  fc454ad3a691a178a48a0bfe874e6774_JaffaCakes118
- Size
  
  63KB
- MD5
  
  fc454ad3a691a178a48a0bfe874e6774
- SHA1
  
  cb1ce7912232011f58bde6adde6b275717864546
- SHA256
  
  04b8c86b3e560eb907cc2f887df1330dfedc422a0ed0393041899c4fc93c8bcf
- SHA512
  
  720e2d9aeb2d7f98afc050e2980f737726b9a3d3b30741cdace5029ac3338fca1b55acaebfe2d987b042c25c230065646291c24db1ff5d8a8937e5d1a68b8d43
- SSDEEP
  
  768:tdGvJuh51O/szqazvtUas2vBJ32OF9QGtz/XMYppmzoapOGcIqAN8pFrKD0BuTlb:tchqbzZtFf8Ul5acGAIIGDlk6l
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2