7b048c70b522428453b8266cf9891d0196fc845d3c016abc2de2c97bcdbe33df | Triage

Sharing

General

Target

17d2a67a718e6fa775f27cf17be51b2e_JaffaCakes118
Size

16KB
Sample

240627-2sclxawcqa
MD5

17d2a67a718e6fa775f27cf17be51b2e
SHA1

ce9a63cbfa82d2cb04a1f684a473d8d83ab5b8e1
SHA256

7b048c70b522428453b8266cf9891d0196fc845d3c016abc2de2c97bcdbe33df
SHA512

6c3e8601841a99b3f4f222909d0f83bf8c2339997776c87ced1a27dcfee71627a1b2f1ef93401585ecea183f691f766d2e81226e29bb0bd632ed3563512424a3
SSDEEP

384:qjqYAq6Xbp/axFPAiMQDN8OZcSszKA0H9cBgYtigAeM8:4qD2PAbyOOOLzKtHQxtigzN

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  17d2a67a718e6fa775f27cf17be51b2e_JaffaCakes118
- Size
  
  16KB
- MD5
  
  17d2a67a718e6fa775f27cf17be51b2e
- SHA1
  
  ce9a63cbfa82d2cb04a1f684a473d8d83ab5b8e1
- SHA256
  
  7b048c70b522428453b8266cf9891d0196fc845d3c016abc2de2c97bcdbe33df
- SHA512
  
  6c3e8601841a99b3f4f222909d0f83bf8c2339997776c87ced1a27dcfee71627a1b2f1ef93401585ecea183f691f766d2e81226e29bb0bd632ed3563512424a3
- SSDEEP
  
  384:qjqYAq6Xbp/axFPAiMQDN8OZcSszKA0H9cBgYtigAeM8:4qD2PAbyOOOLzKtHQxtigzN
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2