68dc368efa8927c196812266f95f11b061d8e846e075e25fb782e43644fe8965 | Triage

Sharing

General

Target

15b25974cd9e4f1488de4de049cb9ee1_JaffaCakes118
Size

13KB
Sample

240627-msenyaxbpd
MD5

15b25974cd9e4f1488de4de049cb9ee1
SHA1

50f7892486da237f7695695f83551f1ba9abfdd2
SHA256

68dc368efa8927c196812266f95f11b061d8e846e075e25fb782e43644fe8965
SHA512

d53cf01bec2abd2898dace5e0c2c55553d935eddf0a119953df26da6693fc40ccfe6c3e74d6d8f2445032bf497ec57f47e288cd9c09a661761cb96bb75d91ce4
SSDEEP

384:yi8HP3ODB8fFAXk2NzLeD2T8GKzV9JCinm3odyeJA+1:yia3OF8fFukweDW+V9tm4dyeW8

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  15b25974cd9e4f1488de4de049cb9ee1_JaffaCakes118
- Size
  
  13KB
- MD5
  
  15b25974cd9e4f1488de4de049cb9ee1
- SHA1
  
  50f7892486da237f7695695f83551f1ba9abfdd2
- SHA256
  
  68dc368efa8927c196812266f95f11b061d8e846e075e25fb782e43644fe8965
- SHA512
  
  d53cf01bec2abd2898dace5e0c2c55553d935eddf0a119953df26da6693fc40ccfe6c3e74d6d8f2445032bf497ec57f47e288cd9c09a661761cb96bb75d91ce4
- SSDEEP
  
  384:yi8HP3ODB8fFAXk2NzLeD2T8GKzV9JCinm3odyeJA+1:yia3OF8fFukweDW+V9tm4dyeW8
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2