37cf02d764c61c994d87b832e11744143edc082d2301734afe0f0ee621b2136e | Triage

Sharing

General

Target

ff3efe7c2f3fe4c49c526d22c1b8249a_JaffaCakes118
Size

44KB
Sample

240421-pc72naba34
MD5

ff3efe7c2f3fe4c49c526d22c1b8249a
SHA1

8012db9f11cb183edd2b004b2469506dee2720e6
SHA256

37cf02d764c61c994d87b832e11744143edc082d2301734afe0f0ee621b2136e
SHA512

3cda6e81229473ea3937944c8f9f67a47f1ec70fab0b76412bb634318cc4f27aa6f4fd84cfce0a9581cb66fd392369aed23fc46506653134b894e824be2895dd
SSDEEP

384:BtSURlUXmRjjq5hmCJQOyR9UFhcJ9KRqON2mUj6YELa09ywA:BtLRSX+jqPFhiKRSNELPK

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  ff3efe7c2f3fe4c49c526d22c1b8249a_JaffaCakes118
- Size
  
  44KB
- MD5
  
  ff3efe7c2f3fe4c49c526d22c1b8249a
- SHA1
  
  8012db9f11cb183edd2b004b2469506dee2720e6
- SHA256
  
  37cf02d764c61c994d87b832e11744143edc082d2301734afe0f0ee621b2136e
- SHA512
  
  3cda6e81229473ea3937944c8f9f67a47f1ec70fab0b76412bb634318cc4f27aa6f4fd84cfce0a9581cb66fd392369aed23fc46506653134b894e824be2895dd
- SSDEEP
  
  384:BtSURlUXmRjjq5hmCJQOyR9UFhcJ9KRqON2mUj6YELa09ywA:BtLRSX+jqPFhiKRSNELPK
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2