f45e349aab307946ea54c07c66cf2378f1457ad261d363b3c24cfcaa22f4cb2b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

04b8ddacede0d0f68c4a7e36a24f154c_JaffaCakes118
Size

1.3MB
Sample

240620-le6ptsthpq
MD5

04b8ddacede0d0f68c4a7e36a24f154c
SHA1

6a27895e3eb3c8c4c9a6053ff4cd688d8cb4bc4c
SHA256

f45e349aab307946ea54c07c66cf2378f1457ad261d363b3c24cfcaa22f4cb2b
SHA512

e7521e33d0784a57159f7858d98235d1c5812fb548c6fed2c1c0292e6ec40caa6a75340ea476eb0a855f5402ef935378137330b52097b03a9cce5c2560bd27ff
SSDEEP

24576:wGV0vwvsxdyx/jNzr2plquvQul7A83BynHw+eVxOyvqnqPF4yCLiZ:wZvwjx/jNzr2PD3IQ+eVknG4yCLiZ

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  04b8ddacede0d0f68c4a7e36a24f154c_JaffaCakes118
- Size
  
  1.3MB
- MD5
  
  04b8ddacede0d0f68c4a7e36a24f154c
- SHA1
  
  6a27895e3eb3c8c4c9a6053ff4cd688d8cb4bc4c
- SHA256
  
  f45e349aab307946ea54c07c66cf2378f1457ad261d363b3c24cfcaa22f4cb2b
- SHA512
  
  e7521e33d0784a57159f7858d98235d1c5812fb548c6fed2c1c0292e6ec40caa6a75340ea476eb0a855f5402ef935378137330b52097b03a9cce5c2560bd27ff
- SSDEEP
  
  24576:wGV0vwvsxdyx/jNzr2plquvQul7A83BynHw+eVxOyvqnqPF4yCLiZ:wZvwjx/jNzr2PD3IQ+eVknG4yCLiZ
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2