6b1193b6ccc722230422035c730490cedb7910b42a034bb5f2578698c4692ff0 | Triage

Sharing

General

Target

21a2d7f652f0b77d0bfd93de94f7eebc_JaffaCakes118
Size

1.2MB
Sample

240703-jx3psaxgjq
MD5

21a2d7f652f0b77d0bfd93de94f7eebc
SHA1

4c70ee83a8a40d98389c52ccafe7e38fd48e8928
SHA256

6b1193b6ccc722230422035c730490cedb7910b42a034bb5f2578698c4692ff0
SHA512

eefadf9b6fb755d650176df166c76ac28bab3a31fcb3fba01deb89c3ccb2a99659b009821f77b6ad5629b8ec878f677c1b535dbe44a06430c8e74beb5fe8c1e4
SSDEEP

24576:NjOHprB3g/B74QFwhMZBThQyU1WQWmQ72aDqUHV71D1c:yWN78qD31c

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  21a2d7f652f0b77d0bfd93de94f7eebc_JaffaCakes118
- Size
  
  1.2MB
- MD5
  
  21a2d7f652f0b77d0bfd93de94f7eebc
- SHA1
  
  4c70ee83a8a40d98389c52ccafe7e38fd48e8928
- SHA256
  
  6b1193b6ccc722230422035c730490cedb7910b42a034bb5f2578698c4692ff0
- SHA512
  
  eefadf9b6fb755d650176df166c76ac28bab3a31fcb3fba01deb89c3ccb2a99659b009821f77b6ad5629b8ec878f677c1b535dbe44a06430c8e74beb5fe8c1e4
- SSDEEP
  
  24576:NjOHprB3g/B74QFwhMZBThQyU1WQWmQ72aDqUHV71D1c:yWN78qD31c
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2