26cc574c1d5aeca652046465a84246bb35ce3dc1d6134771daa6ad54cadc4cea | Triage

Sharing

General

Target

28a6432c33cf36b974ab395b61db88d5_JaffaCakes118
Size

60KB
Sample

240706-svg5qsvfnc
MD5

28a6432c33cf36b974ab395b61db88d5
SHA1

9a0f1f66192683d310df6a494734e9f09b20f987
SHA256

26cc574c1d5aeca652046465a84246bb35ce3dc1d6134771daa6ad54cadc4cea
SHA512

0dd830dfe8e827e0941ca844dec605f51d6cebdb1a87a119031c68c5b2c40f2255597f4e271b505787555129ab0f5df81e82c4b1f4d72573db6218b9977f15a2
SSDEEP

768:StXZVSUJnr4fpTeelDftr9HFjLtc1dMW2GhJLWOCEi/hqZtApmw63A39uPyXDHhz:oZV9JIn1vjGs+h9rwqZucl8myT

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  28a6432c33cf36b974ab395b61db88d5_JaffaCakes118
- Size
  
  60KB
- MD5
  
  28a6432c33cf36b974ab395b61db88d5
- SHA1
  
  9a0f1f66192683d310df6a494734e9f09b20f987
- SHA256
  
  26cc574c1d5aeca652046465a84246bb35ce3dc1d6134771daa6ad54cadc4cea
- SHA512
  
  0dd830dfe8e827e0941ca844dec605f51d6cebdb1a87a119031c68c5b2c40f2255597f4e271b505787555129ab0f5df81e82c4b1f4d72573db6218b9977f15a2
- SSDEEP
  
  768:StXZVSUJnr4fpTeelDftr9HFjLtc1dMW2GhJLWOCEi/hqZtApmw63A39uPyXDHhz:oZV9JIn1vjGs+h9rwqZucl8myT
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2