c1da547ce4b25ecc9477dee3f7b2713956ce6ae35bd0ea7228867aa06e8fd874 | Triage

Sharing

General

Target

16c21c7a18b2a97ed8a4632b1bb5688f_JaffaCakes118
Size

157KB
Sample

240627-vdthjszhrb
MD5

16c21c7a18b2a97ed8a4632b1bb5688f
SHA1

9643e1b5950dfc26c34e59d69593d53dc9504d84
SHA256

c1da547ce4b25ecc9477dee3f7b2713956ce6ae35bd0ea7228867aa06e8fd874
SHA512

d52cd40459ef196c33b1a1a4bdc923e59aec8e46e7d1f87a81815d279c21119fa1ac0843223cc33d529f6daad9adf0d532e168c24c96f5c88747fe6d7339b39e
SSDEEP

3072:/YFZqfEQE9mM3EnsRWzUSJ/aQiTM80ItTJKOGn4PgirLMKdK:QCQ9mM3VR0tJCTMyJ4ggir4KdK

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  16c21c7a18b2a97ed8a4632b1bb5688f_JaffaCakes118
- Size
  
  157KB
- MD5
  
  16c21c7a18b2a97ed8a4632b1bb5688f
- SHA1
  
  9643e1b5950dfc26c34e59d69593d53dc9504d84
- SHA256
  
  c1da547ce4b25ecc9477dee3f7b2713956ce6ae35bd0ea7228867aa06e8fd874
- SHA512
  
  d52cd40459ef196c33b1a1a4bdc923e59aec8e46e7d1f87a81815d279c21119fa1ac0843223cc33d529f6daad9adf0d532e168c24c96f5c88747fe6d7339b39e
- SSDEEP
  
  3072:/YFZqfEQE9mM3EnsRWzUSJ/aQiTM80ItTJKOGn4PgirLMKdK:QCQ9mM3VR0tJCTMyJ4ggir4KdK
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2