2c695d99136f4e2458585f2257502db66db99fda765f2d761277aac177183d71 | Triage

Sharing

General

Target

1896ee022623bb9adc200d6509bdb226_JaffaCakes118
Size

34KB
Sample

240628-dthbsa1dmp
MD5

1896ee022623bb9adc200d6509bdb226
SHA1

2a8b1726a20468431d744513920f3c2881086b71
SHA256

2c695d99136f4e2458585f2257502db66db99fda765f2d761277aac177183d71
SHA512

f31a99443d72b4793b6535658b14e779de4c4abaced874ac27d56a9bd12ff55e2f3f39f86acf365a65eef9603952d607e83d19a0bd7338679c4fda3d7da5618a
SSDEEP

384:X3skIR8T5yLSp4pj12GZk49URmTTWr5v010h7+R6VziKKT+CcjnvtjEtTxAnKhn2:2/upI1LK49lT25v0mhLatan146nK

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  1896ee022623bb9adc200d6509bdb226_JaffaCakes118
- Size
  
  34KB
- MD5
  
  1896ee022623bb9adc200d6509bdb226
- SHA1
  
  2a8b1726a20468431d744513920f3c2881086b71
- SHA256
  
  2c695d99136f4e2458585f2257502db66db99fda765f2d761277aac177183d71
- SHA512
  
  f31a99443d72b4793b6535658b14e779de4c4abaced874ac27d56a9bd12ff55e2f3f39f86acf365a65eef9603952d607e83d19a0bd7338679c4fda3d7da5618a
- SSDEEP
  
  384:X3skIR8T5yLSp4pj12GZk49URmTTWr5v010h7+R6VziKKT+CcjnvtjEtTxAnKhn2:2/upI1LK49lT25v0mhLatan146nK
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2