11234ea136d4510b6c5e7f1123d02ca1b5a8d5d38ea017a38b8dd3dfa61ab880 | Triage

Sharing

General

Target

23361342f83b0e3bdb16342b9826c6a1_JaffaCakes118
Size

390KB
Sample

240703-v5kpqazfrr
MD5

23361342f83b0e3bdb16342b9826c6a1
SHA1

723fa58f4d583a39dbf05239c8c522333d8984dc
SHA256

11234ea136d4510b6c5e7f1123d02ca1b5a8d5d38ea017a38b8dd3dfa61ab880
SHA512

d2fb2e3cc3fde52b95b3a1fd89bfd03171c971dcc688b578a93f70bdac93240196979eca78d3279eb3f26062cd5849ae54cca4aa7e68c8668a7faaf45d10996e
SSDEEP

12288:Hb2l7v8t0u63yNFTUnaNNQrJw6TndaBuv0xV88:Halot0FsFTUafQdwMnnI3

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  23361342f83b0e3bdb16342b9826c6a1_JaffaCakes118
- Size
  
  390KB
- MD5
  
  23361342f83b0e3bdb16342b9826c6a1
- SHA1
  
  723fa58f4d583a39dbf05239c8c522333d8984dc
- SHA256
  
  11234ea136d4510b6c5e7f1123d02ca1b5a8d5d38ea017a38b8dd3dfa61ab880
- SHA512
  
  d2fb2e3cc3fde52b95b3a1fd89bfd03171c971dcc688b578a93f70bdac93240196979eca78d3279eb3f26062cd5849ae54cca4aa7e68c8668a7faaf45d10996e
- SSDEEP
  
  12288:Hb2l7v8t0u63yNFTUnaNNQrJw6TndaBuv0xV88:Halot0FsFTUafQdwMnnI3
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2