993f4364cf13fa46d4931ff41326b189a5d5ebc18b094bc599953709e6c9b938 | Triage

Sharing

General

Target

08bef3ec4e039fb5146cc038e9654dd2_JaffaCakes118
Size

230KB
Sample

240624-qkmalaxepn
MD5

08bef3ec4e039fb5146cc038e9654dd2
SHA1

5333393c95fb33c8a03f8ffe81dea3a40404e326
SHA256

993f4364cf13fa46d4931ff41326b189a5d5ebc18b094bc599953709e6c9b938
SHA512

8f77f6fa949f9817a2173194cdcd00cadbdc9dc061efb2688be35819eadf820754573904ffb7c3c9ab8592bccaab3b289e3278c907865f95110cd6263522f6dd
SSDEEP

1536:QiaVnouSu4CU7XZfjPcj/NMC2PhBRX99m+g9Vxm5dZZpQCLWGUGowkTEI/9:VioFCUrJcj/uC2b9+x0Jq8uwkQIF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  08bef3ec4e039fb5146cc038e9654dd2_JaffaCakes118
- Size
  
  230KB
- MD5
  
  08bef3ec4e039fb5146cc038e9654dd2
- SHA1
  
  5333393c95fb33c8a03f8ffe81dea3a40404e326
- SHA256
  
  993f4364cf13fa46d4931ff41326b189a5d5ebc18b094bc599953709e6c9b938
- SHA512
  
  8f77f6fa949f9817a2173194cdcd00cadbdc9dc061efb2688be35819eadf820754573904ffb7c3c9ab8592bccaab3b289e3278c907865f95110cd6263522f6dd
- SSDEEP
  
  1536:QiaVnouSu4CU7XZfjPcj/NMC2PhBRX99m+g9Vxm5dZZpQCLWGUGowkTEI/9:VioFCUrJcj/uC2b9+x0Jq8uwkQIF
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2