ca2c001a46eda58f4d32fab9f2ea670bc6e3cb6f6e7f50521f5e90bedcba2d0e | Triage

Sharing

General

Target

c0708d42e4987f1aa26818c3cae29862_JaffaCakes118.exe
Size

4.1MB
Sample

240505-ldzj5adh2v
MD5

c0708d42e4987f1aa26818c3cae29862
SHA1

0d80791612deb086109101d5b42a2b7afe84c23c
SHA256

ca2c001a46eda58f4d32fab9f2ea670bc6e3cb6f6e7f50521f5e90bedcba2d0e
SHA512

4c087150555540dc405308241b2a09297fe77ea8f5f93df9da907ecc832fa896abcdcac1a498455cc641aa30c99cccea29ebababdeec3d38cdd2d23ae7b3ff59
SSDEEP

98304:+R0pI/IQlUoMPdmpSpQ4ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdmL5n9klRKN41v

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  c0708d42e4987f1aa26818c3cae29862_JaffaCakes118.exe
- Size
  
  4.1MB
- MD5
  
  c0708d42e4987f1aa26818c3cae29862
- SHA1
  
  0d80791612deb086109101d5b42a2b7afe84c23c
- SHA256
  
  ca2c001a46eda58f4d32fab9f2ea670bc6e3cb6f6e7f50521f5e90bedcba2d0e
- SHA512
  
  4c087150555540dc405308241b2a09297fe77ea8f5f93df9da907ecc832fa896abcdcac1a498455cc641aa30c99cccea29ebababdeec3d38cdd2d23ae7b3ff59
- SSDEEP
  
  98304:+R0pI/IQlUoMPdmpSpQ4ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdmL5n9klRKN41v
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2