6fdd9f8829a43f87a297256a6011388218b08b8e578cf1cd63dd5538a0a3b456 | Triage

Sharing

General

Target

1c025b2ec518bbee9ba6ce9e975478b6_JaffaCakes118
Size

52KB
Sample

240701-wt9p5ssbjf
MD5

1c025b2ec518bbee9ba6ce9e975478b6
SHA1

8917b2f23641cd45d2a4aea6c5c53e14cf6e5e87
SHA256

6fdd9f8829a43f87a297256a6011388218b08b8e578cf1cd63dd5538a0a3b456
SHA512

91f55336415c311c475910d5cc2fa61f27e64f8734a175b14c98f9a382a87374dd3542419604b19e8d5f75cfd910bdf4923b194d56ebeb81acacd474bd81a514
SSDEEP

1536:OrgZ3TSfRbDqkFUgiNNco5mmLRLYzKbC:2jfRbWkFVc5m22zKbC

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  1c025b2ec518bbee9ba6ce9e975478b6_JaffaCakes118
- Size
  
  52KB
- MD5
  
  1c025b2ec518bbee9ba6ce9e975478b6
- SHA1
  
  8917b2f23641cd45d2a4aea6c5c53e14cf6e5e87
- SHA256
  
  6fdd9f8829a43f87a297256a6011388218b08b8e578cf1cd63dd5538a0a3b456
- SHA512
  
  91f55336415c311c475910d5cc2fa61f27e64f8734a175b14c98f9a382a87374dd3542419604b19e8d5f75cfd910bdf4923b194d56ebeb81acacd474bd81a514
- SSDEEP
  
  1536:OrgZ3TSfRbDqkFUgiNNco5mmLRLYzKbC:2jfRbWkFVc5m22zKbC
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2