e3bac78f033e3acf4e1245b883b74fff65e1805e77391a281c5810899d8390d9 | Triage

Sharing

General

Target

223f1f43ae861f71edb0d0a800d17504_JaffaCakes118
Size

124KB
Sample

240703-nq2w5a1alg
MD5

223f1f43ae861f71edb0d0a800d17504
SHA1

aef11b32989f153a0868eeceedde556830f7c231
SHA256

e3bac78f033e3acf4e1245b883b74fff65e1805e77391a281c5810899d8390d9
SHA512

a991a03e14beac21eecfd099299daf660f6d9fe2c7a2e78c5ad732cea112465e926c516626e17955be10e7467fb7dcd0de739cbc87e73f61886bd96dd4e1c4c0
SSDEEP

3072:0rj2Der8MNJ5aeqMccCfN6hXNKQLbn7nbEr5S9+XRuHTXCj:cj2DC8kZqrf6hwMb7nKVXR6zo

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  223f1f43ae861f71edb0d0a800d17504_JaffaCakes118
- Size
  
  124KB
- MD5
  
  223f1f43ae861f71edb0d0a800d17504
- SHA1
  
  aef11b32989f153a0868eeceedde556830f7c231
- SHA256
  
  e3bac78f033e3acf4e1245b883b74fff65e1805e77391a281c5810899d8390d9
- SHA512
  
  a991a03e14beac21eecfd099299daf660f6d9fe2c7a2e78c5ad732cea112465e926c516626e17955be10e7467fb7dcd0de739cbc87e73f61886bd96dd4e1c4c0
- SSDEEP
  
  3072:0rj2Der8MNJ5aeqMccCfN6hXNKQLbn7nbEr5S9+XRuHTXCj:cj2DC8kZqrf6hwMb7nKVXR6zo
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2