aeaeccd90c6e152065c179f4d5ff75e552097afb4db67df9b2a220284fc1388c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20f4dcd47cbc1dc56ef312ce2c7a9193_JaffaCakes118
Size

76KB
Sample

240703-d7pm1szdjn
MD5

20f4dcd47cbc1dc56ef312ce2c7a9193
SHA1

db40c69356d34813b15bff4535f652b136de8a94
SHA256

aeaeccd90c6e152065c179f4d5ff75e552097afb4db67df9b2a220284fc1388c
SHA512

832576593e2beaf56d64654bbc4f57526ef65c7f707230910b21da61310d3a6d72bedca6398f36217753ebf16528f1f10267d0776e96d31c1ed25279be42e3c6
SSDEEP

1536:cx9a8wstji9A12IrrJMIVAFa8wstji5xT:6a8P4aAIrmRFa8P4H

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  20f4dcd47cbc1dc56ef312ce2c7a9193_JaffaCakes118
- Size
  
  76KB
- MD5
  
  20f4dcd47cbc1dc56ef312ce2c7a9193
- SHA1
  
  db40c69356d34813b15bff4535f652b136de8a94
- SHA256
  
  aeaeccd90c6e152065c179f4d5ff75e552097afb4db67df9b2a220284fc1388c
- SHA512
  
  832576593e2beaf56d64654bbc4f57526ef65c7f707230910b21da61310d3a6d72bedca6398f36217753ebf16528f1f10267d0776e96d31c1ed25279be42e3c6
- SSDEEP
  
  1536:cx9a8wstji9A12IrrJMIVAFa8wstji5xT:6a8P4aAIrmRFa8P4H
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2