da0093fc2740568b18ffd38d396292ecf83ef6aace466d1e74cafc7cea64c866 | Triage

Sharing

General

Target

e710a4ebc93ac6a9ebfffdc4ec1030b2_JaffaCakes118.exe
Size

80KB
Sample

240505-ljq5yaea9x
MD5

e710a4ebc93ac6a9ebfffdc4ec1030b2
SHA1

be99a51c64e74441d56cc966bbcef33db20f6f2a
SHA256

da0093fc2740568b18ffd38d396292ecf83ef6aace466d1e74cafc7cea64c866
SHA512

d97864b7c9b8b3bb4029ff5eb09a27689419a6b34d401ff7e2bc28f38ff9655c1c3656baeaeebbb062961963d70235db4d981e281a75fd0261216e91ae63486b
SSDEEP

1536:qt4Zw7qEP0A/nsSEnsacj3QoaQU+Y2LtSwfi+TjRC/6y:qt4jE8W+nqT4wf1TjYD

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e710a4ebc93ac6a9ebfffdc4ec1030b2_JaffaCakes118.exe
- Size
  
  80KB
- MD5
  
  e710a4ebc93ac6a9ebfffdc4ec1030b2
- SHA1
  
  be99a51c64e74441d56cc966bbcef33db20f6f2a
- SHA256
  
  da0093fc2740568b18ffd38d396292ecf83ef6aace466d1e74cafc7cea64c866
- SHA512
  
  d97864b7c9b8b3bb4029ff5eb09a27689419a6b34d401ff7e2bc28f38ff9655c1c3656baeaeebbb062961963d70235db4d981e281a75fd0261216e91ae63486b
- SSDEEP
  
  1536:qt4Zw7qEP0A/nsSEnsacj3QoaQU+Y2LtSwfi+TjRC/6y:qt4jE8W+nqT4wf1TjYD
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2