c9c42fa50740ee487ffe89ea887ac68cb214d77f635dca749e161e99d4b1bda4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

213c6db9db5a06b42d110987d77d1111_JaffaCakes118
Size

92KB
Sample

240703-f7yl2azcng
MD5

213c6db9db5a06b42d110987d77d1111
SHA1

c586fdc3bd8cab794517c82e018a55ecaece742d
SHA256

c9c42fa50740ee487ffe89ea887ac68cb214d77f635dca749e161e99d4b1bda4
SHA512

35663c639068a543e553976267d2737a62b20297ffe3d5f2ef315658429aab8d13030a25da68dff3ae2b891f4935c9b49a8dabe29394376b664c530c1aa5a64c
SSDEEP

1536:jWv+i3J2OUhdb7b966LljCt+pHmdUm3omWbB6lfwyTiyIMR:jW2i52Oc5b966RjCttdUm3omW8hTdl

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  213c6db9db5a06b42d110987d77d1111_JaffaCakes118
- Size
  
  92KB
- MD5
  
  213c6db9db5a06b42d110987d77d1111
- SHA1
  
  c586fdc3bd8cab794517c82e018a55ecaece742d
- SHA256
  
  c9c42fa50740ee487ffe89ea887ac68cb214d77f635dca749e161e99d4b1bda4
- SHA512
  
  35663c639068a543e553976267d2737a62b20297ffe3d5f2ef315658429aab8d13030a25da68dff3ae2b891f4935c9b49a8dabe29394376b664c530c1aa5a64c
- SSDEEP
  
  1536:jWv+i3J2OUhdb7b966LljCt+pHmdUm3omWbB6lfwyTiyIMR:jW2i52Oc5b966RjCttdUm3omW8hTdl
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2