b2a71556349ee7f22d3659db322d41856117262ffdef35208daeac72b5237b62 | Triage

Sharing

General

Target

fc93a8f8129a0eb6fa3d8a8246e4d142_JaffaCakes118
Size

64KB
Sample

240420-mskj7afb7w
MD5

fc93a8f8129a0eb6fa3d8a8246e4d142
SHA1

efaa1c445872c6ef454ad8fa4740496b7ed72e49
SHA256

b2a71556349ee7f22d3659db322d41856117262ffdef35208daeac72b5237b62
SHA512

602b3ee70520f5d4e1b35969953f7b421e133685086f9392777a8a5fe8a399d75779e512d9c194c9e14f39c05d4eef4975851c71f667f79c77c9bec3fff60ac7
SSDEEP

1536:DCvP4eP5kAckeyT/dFjIWEMkS2LCsBMu/H1:84S5bN/dFUfCaN

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  fc93a8f8129a0eb6fa3d8a8246e4d142_JaffaCakes118
- Size
  
  64KB
- MD5
  
  fc93a8f8129a0eb6fa3d8a8246e4d142
- SHA1
  
  efaa1c445872c6ef454ad8fa4740496b7ed72e49
- SHA256
  
  b2a71556349ee7f22d3659db322d41856117262ffdef35208daeac72b5237b62
- SHA512
  
  602b3ee70520f5d4e1b35969953f7b421e133685086f9392777a8a5fe8a399d75779e512d9c194c9e14f39c05d4eef4975851c71f667f79c77c9bec3fff60ac7
- SSDEEP
  
  1536:DCvP4eP5kAckeyT/dFjIWEMkS2LCsBMu/H1:84S5bN/dFUfCaN
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2