9843ceaca2b9173d3a1f9b24ba85180a40884dbf78dd7298b0c57008fa36e33d | Triage

Sharing

General

Target

964be19e477b57d85aceb7648e2c105d_JaffaCakes118
Size

748KB
Sample

240604-z6dp1sbg6x
MD5

964be19e477b57d85aceb7648e2c105d
SHA1

6c8ab56853218f28ac11c16b050ad589ea14bafe
SHA256

9843ceaca2b9173d3a1f9b24ba85180a40884dbf78dd7298b0c57008fa36e33d
SHA512

60379f9bf7f4e59f81f95898d1b0c10ea82abd306dbdf4dfef921e873bf4c3d2c4914d498efa16d60c52171a1802099c3c61289a12c64f13ea9457cd807ce4ca
SSDEEP

12288:0EI6h2sJXCB1joFX4HcTHQPviK5qXOlL29huNghWdLzqCTz0MDNhmku02k//m1:0EPXCzoXPQR5qXfDsghWxnTz0eNhFn2c

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  964be19e477b57d85aceb7648e2c105d_JaffaCakes118
- Size
  
  748KB
- MD5
  
  964be19e477b57d85aceb7648e2c105d
- SHA1
  
  6c8ab56853218f28ac11c16b050ad589ea14bafe
- SHA256
  
  9843ceaca2b9173d3a1f9b24ba85180a40884dbf78dd7298b0c57008fa36e33d
- SHA512
  
  60379f9bf7f4e59f81f95898d1b0c10ea82abd306dbdf4dfef921e873bf4c3d2c4914d498efa16d60c52171a1802099c3c61289a12c64f13ea9457cd807ce4ca
- SSDEEP
  
  12288:0EI6h2sJXCB1joFX4HcTHQPviK5qXOlL29huNghWdLzqCTz0MDNhmku02k//m1:0EPXCzoXPQR5qXfDsghWxnTz0eNhFn2c
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2