e5eb108bed1fc35f8af5ee078226029653ac0c99dd4a663c0bc809907b5bca44 | Triage

Sharing

General

Target

08ace76dabfdb08b90f1b37bba275aca_JaffaCakes118
Size

194KB
Sample

240620-w6qsss1gqh
MD5

08ace76dabfdb08b90f1b37bba275aca
SHA1

95f9666c53607476a3dd533bbfc140880bda865b
SHA256

e5eb108bed1fc35f8af5ee078226029653ac0c99dd4a663c0bc809907b5bca44
SHA512

b3ebde34f560ccefba6cad11c7f1a3f770e037d1e6392266bf24b44d9507fa667f96969678f830112bd6e08c07230d0998fd0e29fc5106146a59845094142437
SSDEEP

6144:gfnTs5QNag0/bGAX47NAmkYNcXmtJ5VH0zygtjTLj:gnw5v6G47NdcXmtj6Wan

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  08ace76dabfdb08b90f1b37bba275aca_JaffaCakes118
- Size
  
  194KB
- MD5
  
  08ace76dabfdb08b90f1b37bba275aca
- SHA1
  
  95f9666c53607476a3dd533bbfc140880bda865b
- SHA256
  
  e5eb108bed1fc35f8af5ee078226029653ac0c99dd4a663c0bc809907b5bca44
- SHA512
  
  b3ebde34f560ccefba6cad11c7f1a3f770e037d1e6392266bf24b44d9507fa667f96969678f830112bd6e08c07230d0998fd0e29fc5106146a59845094142437
- SSDEEP
  
  6144:gfnTs5QNag0/bGAX47NAmkYNcXmtJ5VH0zygtjTLj:gnw5v6G47NdcXmtj6Wan
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2