0c7b9568523ef7d404acc23a8de9ef789e772f97809aa5ccda8f6ea9ec8fd2ad | Triage

Sharing

General

Target

0646e2421f3a63c98770c935861d5f40_JaffaCakes118
Size

273KB
Sample

240620-qdvndstbnp
MD5

0646e2421f3a63c98770c935861d5f40
SHA1

b647d050bad1ef9aab1d356f161dd084fa4948a3
SHA256

0c7b9568523ef7d404acc23a8de9ef789e772f97809aa5ccda8f6ea9ec8fd2ad
SHA512

a6f82d7388aabe2a80361de844bfb324863d2baf65a9cd2857f993c3a960f36fb3c84a07c83d79d778a220ed258144642667b2d0362747d26a99ba6a0c33e979
SSDEEP

3072:aESJj+qJS6WehSHl9vEpMulJSBoZ4UhUGkeXg8Ab+yqdDCknGyjlvF57OOooo/M4:aE5HZ6SuPZ4XGAbIdHGYvGxtEA

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  0646e2421f3a63c98770c935861d5f40_JaffaCakes118
- Size
  
  273KB
- MD5
  
  0646e2421f3a63c98770c935861d5f40
- SHA1
  
  b647d050bad1ef9aab1d356f161dd084fa4948a3
- SHA256
  
  0c7b9568523ef7d404acc23a8de9ef789e772f97809aa5ccda8f6ea9ec8fd2ad
- SHA512
  
  a6f82d7388aabe2a80361de844bfb324863d2baf65a9cd2857f993c3a960f36fb3c84a07c83d79d778a220ed258144642667b2d0362747d26a99ba6a0c33e979
- SSDEEP
  
  3072:aESJj+qJS6WehSHl9vEpMulJSBoZ4UhUGkeXg8Ab+yqdDCknGyjlvF57OOooo/M4:aE5HZ6SuPZ4XGAbIdHGYvGxtEA
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2