6eb12481f267482543fdb2f9b759b8035631930e3e90d1626c95fbff5669373a | Triage

Sharing

General

Target

172960eb458db73204724b8b2fb3ce31_JaffaCakes118
Size

193KB
Sample

240627-xn75ssvhma
MD5

172960eb458db73204724b8b2fb3ce31
SHA1

8e2881f4b11786fa7750c42074434ba7f7d5df86
SHA256

6eb12481f267482543fdb2f9b759b8035631930e3e90d1626c95fbff5669373a
SHA512

39fb686fa649f5f6f100a256aad4584f8cb1a5950901b9972e4ce850ab21c767423def3fb528d1bf4682d396c72f41894c3dbe43c36f20703d03941c28d4f62e
SSDEEP

3072:f/vGHqJLx6B/CRLdhH+5GWp1icKAArDZz4N9GhbkrNEkBNJAQ8lwzhAFPp//gO:HWqA/eR2p0yN90QEHpHgO

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  172960eb458db73204724b8b2fb3ce31_JaffaCakes118
- Size
  
  193KB
- MD5
  
  172960eb458db73204724b8b2fb3ce31
- SHA1
  
  8e2881f4b11786fa7750c42074434ba7f7d5df86
- SHA256
  
  6eb12481f267482543fdb2f9b759b8035631930e3e90d1626c95fbff5669373a
- SHA512
  
  39fb686fa649f5f6f100a256aad4584f8cb1a5950901b9972e4ce850ab21c767423def3fb528d1bf4682d396c72f41894c3dbe43c36f20703d03941c28d4f62e
- SSDEEP
  
  3072:f/vGHqJLx6B/CRLdhH+5GWp1icKAArDZz4N9GhbkrNEkBNJAQ8lwzhAFPp//gO:HWqA/eR2p0yN90QEHpHgO
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2