95847a4821aa585b847ff112dae32a8cf6e8032aae8b41756f2ef9d13fd1a147 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1495e523784a3191a7da3607fbe31110_JaffaCakes118
Size

316KB
Sample

240627-ef13ea1dma
MD5

1495e523784a3191a7da3607fbe31110
SHA1

e6c4e1e80a3550c1de638cbd14516b74bec763ae
SHA256

95847a4821aa585b847ff112dae32a8cf6e8032aae8b41756f2ef9d13fd1a147
SHA512

f1b3b987801c0a19bf1f4f500e89cf2b0f159165e5a5569955e5379537e6ba21bd378f0649c277b5f34718c8cee7d61f11c5f32ac8c12f03c51275bca338c375
SSDEEP

6144:KL8Vm1iBa9kBMsivptH3MqWa/Yfxi6kdrcbzgF+M59EQYjHPK5lT:DmYZMfcqWa/YfxiRgM9EQYbP4

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  1495e523784a3191a7da3607fbe31110_JaffaCakes118
- Size
  
  316KB
- MD5
  
  1495e523784a3191a7da3607fbe31110
- SHA1
  
  e6c4e1e80a3550c1de638cbd14516b74bec763ae
- SHA256
  
  95847a4821aa585b847ff112dae32a8cf6e8032aae8b41756f2ef9d13fd1a147
- SHA512
  
  f1b3b987801c0a19bf1f4f500e89cf2b0f159165e5a5569955e5379537e6ba21bd378f0649c277b5f34718c8cee7d61f11c5f32ac8c12f03c51275bca338c375
- SSDEEP
  
  6144:KL8Vm1iBa9kBMsivptH3MqWa/Yfxi6kdrcbzgF+M59EQYjHPK5lT:DmYZMfcqWa/YfxiRgM9EQYbP4
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2