e16afe0d4e655437255e9113647a14bd71a32a8269e106232cfd740f7faaa2ed | Triage

Sharing

General

Target

17bbce138cf483552d80d5173ab3abf6_JaffaCakes118
Size

24KB
Sample

240627-1776patgmg
MD5

17bbce138cf483552d80d5173ab3abf6
SHA1

dbba94d291839a7aeaca14be7de594a457eb2041
SHA256

e16afe0d4e655437255e9113647a14bd71a32a8269e106232cfd740f7faaa2ed
SHA512

7d28b28c3ebd15d732f83d2ed15f66b30b5121ced24bbb563417e8b2d5eade046228e2aa441886f4a132e215c5035680cd823d65d190d1ac198ae350050902c1
SSDEEP

384:VW4JURRkGRW89KCPMO3hz6vAyeQfV10XXThrIZcKbwOR0q6Sg/uASCX8:VdU9Rx2Ay5V1W5IZFb9ReduVf

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  17bbce138cf483552d80d5173ab3abf6_JaffaCakes118
- Size
  
  24KB
- MD5
  
  17bbce138cf483552d80d5173ab3abf6
- SHA1
  
  dbba94d291839a7aeaca14be7de594a457eb2041
- SHA256
  
  e16afe0d4e655437255e9113647a14bd71a32a8269e106232cfd740f7faaa2ed
- SHA512
  
  7d28b28c3ebd15d732f83d2ed15f66b30b5121ced24bbb563417e8b2d5eade046228e2aa441886f4a132e215c5035680cd823d65d190d1ac198ae350050902c1
- SSDEEP
  
  384:VW4JURRkGRW89KCPMO3hz6vAyeQfV10XXThrIZcKbwOR0q6Sg/uASCX8:VdU9Rx2Ay5V1W5IZFb9ReduVf
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2