a444add27319a02c0a221049298b08a567178f3dbfccb6f054d0eab327e5562a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6a717a27a9999d1b09eadedf01fdc10b_JaffaCakes118
Size

5.7MB
Sample

240523-k48eaabf57
MD5

6a717a27a9999d1b09eadedf01fdc10b
SHA1

fce412dd828bd6385728ae5efe543f86dcdf67d3
SHA256

a444add27319a02c0a221049298b08a567178f3dbfccb6f054d0eab327e5562a
SHA512

00deaf61ce1de2e243a9605776356662171400dbd48e9ac073a4bb57bbd4d6cd1734033cf95fbd5431e3a0b8f3d4d95b4836521a2bed842c698ff42bfd5a8826
SSDEEP

98304:/FPTM4RuYPU9rjC4mZqBjv5yAxH2ooOBut8EHASqidoQR4/fbSO:y9o2rYZivoO0t5HXqi+UCTP

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  6a717a27a9999d1b09eadedf01fdc10b_JaffaCakes118
- Size
  
  5.7MB
- MD5
  
  6a717a27a9999d1b09eadedf01fdc10b
- SHA1
  
  fce412dd828bd6385728ae5efe543f86dcdf67d3
- SHA256
  
  a444add27319a02c0a221049298b08a567178f3dbfccb6f054d0eab327e5562a
- SHA512
  
  00deaf61ce1de2e243a9605776356662171400dbd48e9ac073a4bb57bbd4d6cd1734033cf95fbd5431e3a0b8f3d4d95b4836521a2bed842c698ff42bfd5a8826
- SSDEEP
  
  98304:/FPTM4RuYPU9rjC4mZqBjv5yAxH2ooOBut8EHASqidoQR4/fbSO:y9o2rYZivoO0t5HXqi+UCTP
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Registers COM server for autorun
  persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2