0b5772eed28349c5a87d93423766a235337968e1f97602d7869f426dc10d305a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03d98dd0272abf54fd37e137e1c00dbe_JaffaCakes118
Size

12KB
Sample

240620-hs7mhazbkq
MD5

03d98dd0272abf54fd37e137e1c00dbe
SHA1

caddad75e43e5d447b2ed2a6d1242400edb6aab2
SHA256

0b5772eed28349c5a87d93423766a235337968e1f97602d7869f426dc10d305a
SHA512

89758c17217a8e19cf1ebb3477bfe0502e2638229888e92c88b3dfc45398a0c6a5669780e9d79480ea7c317e06171ecc72f59e574d8077f328b15b733840f405
SSDEEP

384:xc+jY2ZNii+YANVkZpFbml2tBQVABKNYP:e+jZ4NVkrFb4a4OuY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  03d98dd0272abf54fd37e137e1c00dbe_JaffaCakes118
- Size
  
  12KB
- MD5
  
  03d98dd0272abf54fd37e137e1c00dbe
- SHA1
  
  caddad75e43e5d447b2ed2a6d1242400edb6aab2
- SHA256
  
  0b5772eed28349c5a87d93423766a235337968e1f97602d7869f426dc10d305a
- SHA512
  
  89758c17217a8e19cf1ebb3477bfe0502e2638229888e92c88b3dfc45398a0c6a5669780e9d79480ea7c317e06171ecc72f59e574d8077f328b15b733840f405
- SSDEEP
  
  384:xc+jY2ZNii+YANVkZpFbml2tBQVABKNYP:e+jZ4NVkrFb4a4OuY
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2