133188aea5bac097e5f9fee9020eaf44f54026e0b2598f1dbc5b6482d3cf6743 | Triage

Sharing

General

Target

271d25853afef51bcd0e9161c13997fb_JaffaCakes118
Size

321KB
Sample

240705-zk6tnsvgpl
MD5

271d25853afef51bcd0e9161c13997fb
SHA1

12cf02f965063b43d1b10986c0f2eea397a5dd82
SHA256

133188aea5bac097e5f9fee9020eaf44f54026e0b2598f1dbc5b6482d3cf6743
SHA512

7a62fdf74fbde5dedd4e509febcddf8d782713dc5255eabccff99c464aac572826c001fc220e253976a6934ed6f8886f42f79b022f82fa21dc68e5b8c1d0f6cd
SSDEEP

6144:alvUvFfgVHmRmQ9RH37vuVMsG0zVoCZs/dLkW9HuQ1xLUH:alvMYfQ/X7v0MMpQkUHzT4

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  271d25853afef51bcd0e9161c13997fb_JaffaCakes118
- Size
  
  321KB
- MD5
  
  271d25853afef51bcd0e9161c13997fb
- SHA1
  
  12cf02f965063b43d1b10986c0f2eea397a5dd82
- SHA256
  
  133188aea5bac097e5f9fee9020eaf44f54026e0b2598f1dbc5b6482d3cf6743
- SHA512
  
  7a62fdf74fbde5dedd4e509febcddf8d782713dc5255eabccff99c464aac572826c001fc220e253976a6934ed6f8886f42f79b022f82fa21dc68e5b8c1d0f6cd
- SSDEEP
  
  6144:alvUvFfgVHmRmQ9RH37vuVMsG0zVoCZs/dLkW9HuQ1xLUH:alvMYfQ/X7v0MMpQkUHzT4
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2