453ff034a5fdf52d61c27a8af2c38a108c1ba7568a5dbcb22fae48aad9e1bb28 | Triage

Sharing

General

Target

655c2cbae52fc3ac2da2e154fca69d13_JaffaCakes118
Size

526KB
Sample

240522-awr28afa4y
MD5

655c2cbae52fc3ac2da2e154fca69d13
SHA1

e2ffddd1d46e6cc18447accf0a3c4ae8cd5054c0
SHA256

453ff034a5fdf52d61c27a8af2c38a108c1ba7568a5dbcb22fae48aad9e1bb28
SHA512

fef44fe1686db5e4f4296960c7698c06011582b191907f780d9e064bbf8f95107e44945d73f61b572dffbe0eb46d4faca5d6b4067be54a2bb81f8ddb7311e66f
SSDEEP

6144:gKBSIlgiugS1xva8mijY8R/ysybvrzozQg1Im:Pa51xvaR8RZyzWQg/

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  655c2cbae52fc3ac2da2e154fca69d13_JaffaCakes118
- Size
  
  526KB
- MD5
  
  655c2cbae52fc3ac2da2e154fca69d13
- SHA1
  
  e2ffddd1d46e6cc18447accf0a3c4ae8cd5054c0
- SHA256
  
  453ff034a5fdf52d61c27a8af2c38a108c1ba7568a5dbcb22fae48aad9e1bb28
- SHA512
  
  fef44fe1686db5e4f4296960c7698c06011582b191907f780d9e064bbf8f95107e44945d73f61b572dffbe0eb46d4faca5d6b4067be54a2bb81f8ddb7311e66f
- SSDEEP
  
  6144:gKBSIlgiugS1xva8mijY8R/ysybvrzozQg1Im:Pa51xvaR8RZyzWQg/
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2