e048c53f51d4a2fd1076717353b1de92fdb778f7eb8b517aa4cbcd5373b5ce64 | Triage

Sharing

General

Target

163a231e3e1ef7611e0a189c7fa20296_JaffaCakes118
Size

13KB
Sample

240627-q4v2vatgqf
MD5

163a231e3e1ef7611e0a189c7fa20296
SHA1

e6aea52cab2c5419ffd95f2d6eff721b1c1e6afe
SHA256

e048c53f51d4a2fd1076717353b1de92fdb778f7eb8b517aa4cbcd5373b5ce64
SHA512

992af61c0ba2c5d8f15421a3f5f1b4c996d526275f7f6f43b7cb017124d7d0d93bcd841ca8252290d828f95616125bed119c1fe8cf588f8e670e3bb6b855fe4a
SSDEEP

192:kmIFYOjh2hJA9rvfGBHGt1R3YUkcYCxiACb+tKFKokBPYYHLYao3szQEyjjjaFUW:kmI6AoJwfGBHGFvxFCbcRYKzvoi

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  163a231e3e1ef7611e0a189c7fa20296_JaffaCakes118
- Size
  
  13KB
- MD5
  
  163a231e3e1ef7611e0a189c7fa20296
- SHA1
  
  e6aea52cab2c5419ffd95f2d6eff721b1c1e6afe
- SHA256
  
  e048c53f51d4a2fd1076717353b1de92fdb778f7eb8b517aa4cbcd5373b5ce64
- SHA512
  
  992af61c0ba2c5d8f15421a3f5f1b4c996d526275f7f6f43b7cb017124d7d0d93bcd841ca8252290d828f95616125bed119c1fe8cf588f8e670e3bb6b855fe4a
- SSDEEP
  
  192:kmIFYOjh2hJA9rvfGBHGt1R3YUkcYCxiACb+tKFKokBPYYHLYao3szQEyjjjaFUW:kmI6AoJwfGBHGFvxFCbcRYKzvoi
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2