2c68a28e1c3f92237b235ff859195361a605270715190cea719743ce967e3d38 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

260e9bab435d13be5e7a433369e2cc98_JaffaCakes118
Size

25KB
Sample

240704-ylmxhswbkr
MD5

260e9bab435d13be5e7a433369e2cc98
SHA1

19f293347d3c21d1af46b73e8f969f4a6103f123
SHA256

2c68a28e1c3f92237b235ff859195361a605270715190cea719743ce967e3d38
SHA512

26520b464f42255ba7c5dc58c986b379893ba4ed0ada1840e72679b7e79c1d6dcfe046be4f7181f1c213a77a2be1073ba9d6813421f41ec196c250265239f667
SSDEEP

768:uYgQlevpDiSK6pX9B6U9E0G6xEpYHFSFC:lleh9KWHVKJFC

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  260e9bab435d13be5e7a433369e2cc98_JaffaCakes118
- Size
  
  25KB
- MD5
  
  260e9bab435d13be5e7a433369e2cc98
- SHA1
  
  19f293347d3c21d1af46b73e8f969f4a6103f123
- SHA256
  
  2c68a28e1c3f92237b235ff859195361a605270715190cea719743ce967e3d38
- SHA512
  
  26520b464f42255ba7c5dc58c986b379893ba4ed0ada1840e72679b7e79c1d6dcfe046be4f7181f1c213a77a2be1073ba9d6813421f41ec196c250265239f667
- SSDEEP
  
  768:uYgQlevpDiSK6pX9B6U9E0G6xEpYHFSFC:lleh9KWHVKJFC
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2