71cbc4e8897d737c0fe024c27e946dfbd2ea2aadc94c0dd82c08e49224af1812 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

062787697309a776d466febbcc34433d_JaffaCakes118
Size

231KB
Sample

240620-p35zzsybke
MD5

062787697309a776d466febbcc34433d
SHA1

1bdb49f0a92a527c84981b84b7c722d814ff43fc
SHA256

71cbc4e8897d737c0fe024c27e946dfbd2ea2aadc94c0dd82c08e49224af1812
SHA512

f09302ba86d7f708ff81e2a2d77f65edc113c61c311b02b3ec12ae523329a542a44c12030b3ca40d905a2e263978e82ccd3eb42965c08b798aa02438d7783030
SSDEEP

1536:/fmWO4AWzHQKhOiMVmSf0d0fN3cfhTKQQGJc01l0IvB5Q6tM/1GMGawikBRbDD9X:GKHQKhOV0dIEbJcyvLQ6twnwiknl

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  062787697309a776d466febbcc34433d_JaffaCakes118
- Size
  
  231KB
- MD5
  
  062787697309a776d466febbcc34433d
- SHA1
  
  1bdb49f0a92a527c84981b84b7c722d814ff43fc
- SHA256
  
  71cbc4e8897d737c0fe024c27e946dfbd2ea2aadc94c0dd82c08e49224af1812
- SHA512
  
  f09302ba86d7f708ff81e2a2d77f65edc113c61c311b02b3ec12ae523329a542a44c12030b3ca40d905a2e263978e82ccd3eb42965c08b798aa02438d7783030
- SSDEEP
  
  1536:/fmWO4AWzHQKhOiMVmSf0d0fN3cfhTKQQGJc01l0IvB5Q6tM/1GMGawikBRbDD9X:GKHQKhOV0dIEbJcyvLQ6twnwiknl
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2