99a71a282d9c56eec5aa09d8cc2b895eea3d0eea881d6028f192f2c4e9d95c97 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27599cbbebdb4be49842b0963d2ef0e6_JaffaCakes118
Size

713KB
Sample

240706-e8gjgawapp
MD5

27599cbbebdb4be49842b0963d2ef0e6
SHA1

cd291ed8b50ace974d0c149fff87c23c657c4425
SHA256

99a71a282d9c56eec5aa09d8cc2b895eea3d0eea881d6028f192f2c4e9d95c97
SHA512

d5ec1f54aff7f99ef7cc02ac9cff853049b06457d8fe0aaa687eaa8eca99f331e65a6c9ac50a10ab277221b0cb5a17ee4a443e4b8731ddd10572edad5dbaf39e
SSDEEP

12288:S5fbArBEXwgoqk+PMzhZF3Z4mxx60MHoTAFbo:S5cF1goqlPIhZQmX6Kb

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  27599cbbebdb4be49842b0963d2ef0e6_JaffaCakes118
- Size
  
  713KB
- MD5
  
  27599cbbebdb4be49842b0963d2ef0e6
- SHA1
  
  cd291ed8b50ace974d0c149fff87c23c657c4425
- SHA256
  
  99a71a282d9c56eec5aa09d8cc2b895eea3d0eea881d6028f192f2c4e9d95c97
- SHA512
  
  d5ec1f54aff7f99ef7cc02ac9cff853049b06457d8fe0aaa687eaa8eca99f331e65a6c9ac50a10ab277221b0cb5a17ee4a443e4b8731ddd10572edad5dbaf39e
- SSDEEP
  
  12288:S5fbArBEXwgoqk+PMzhZF3Z4mxx60MHoTAFbo:S5cF1goqlPIhZQmX6Kb
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2