f12ddd573b5b3e7f29858254e43a73f962f56480651af0ef5029e463339bde33 | Triage

Sharing

General

Target

0cffb15d2a92d4169dbef0e7bedc4d0e_JaffaCakes118
Size

833KB
Sample

240625-g4b5asxfll
MD5

0cffb15d2a92d4169dbef0e7bedc4d0e
SHA1

7e53ee3117a5557a6f0dc3955f4aa1c0f49cfc9b
SHA256

f12ddd573b5b3e7f29858254e43a73f962f56480651af0ef5029e463339bde33
SHA512

e251dc8ea6c0bd7ec461dbb0485f78e371d19caa08c84bb0818636122abc5c5c7ec1f2ba9c92cf18ca955b3c114f21848ae057f34750ed46dde8469f505ce218
SSDEEP

12288:Rg8nSmRYJAo1e0Vl3kFb9d8ZaAlhHfflAaTcS3yv7sbuVHU9V8cwCoGH+c+sBYlq:dnSmeJhZVlOb9d8Zj3ifqV8chP

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  0cffb15d2a92d4169dbef0e7bedc4d0e_JaffaCakes118
- Size
  
  833KB
- MD5
  
  0cffb15d2a92d4169dbef0e7bedc4d0e
- SHA1
  
  7e53ee3117a5557a6f0dc3955f4aa1c0f49cfc9b
- SHA256
  
  f12ddd573b5b3e7f29858254e43a73f962f56480651af0ef5029e463339bde33
- SHA512
  
  e251dc8ea6c0bd7ec461dbb0485f78e371d19caa08c84bb0818636122abc5c5c7ec1f2ba9c92cf18ca955b3c114f21848ae057f34750ed46dde8469f505ce218
- SSDEEP
  
  12288:Rg8nSmRYJAo1e0Vl3kFb9d8ZaAlhHfflAaTcS3yv7sbuVHU9V8cwCoGH+c+sBYlq:dnSmeJhZVlOb9d8Zj3ifqV8chP
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2