3b00867c1d55ac6d80f39c97595851e5aadd12d5da9c2a13deaf53fa33e1cb81 | Triage

Sharing

General

Target

1af83d015cbe427cbf10c1ae1a014a70_JaffaCakes118
Size

32KB
Sample

240701-mnajeswgja
MD5

1af83d015cbe427cbf10c1ae1a014a70
SHA1

c302faf7e8b65afcb55a799cb1eaee73ae5e2d3b
SHA256

3b00867c1d55ac6d80f39c97595851e5aadd12d5da9c2a13deaf53fa33e1cb81
SHA512

ac1784f8c8e7112225aad176d1023b9abe1c49baa03b9d19af805250e6f665095202ebe9ff3b05781334d3a1758215e193a0f7ee6a21037d5cca482549c7661d
SSDEEP

768:+F8lb2HtOeE2KOtXqE11oYx3OXHKo4TfPmu1jKvC:+F8l6HRENvELoYxoqo47Pmu1kC

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  1af83d015cbe427cbf10c1ae1a014a70_JaffaCakes118
- Size
  
  32KB
- MD5
  
  1af83d015cbe427cbf10c1ae1a014a70
- SHA1
  
  c302faf7e8b65afcb55a799cb1eaee73ae5e2d3b
- SHA256
  
  3b00867c1d55ac6d80f39c97595851e5aadd12d5da9c2a13deaf53fa33e1cb81
- SHA512
  
  ac1784f8c8e7112225aad176d1023b9abe1c49baa03b9d19af805250e6f665095202ebe9ff3b05781334d3a1758215e193a0f7ee6a21037d5cca482549c7661d
- SSDEEP
  
  768:+F8lb2HtOeE2KOtXqE11oYx3OXHKo4TfPmu1jKvC:+F8l6HRENvELoYxoqo47Pmu1kC
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2