bb6bb57641cdea7dac73f83c228645228173f771c6a3931df340d94e51b09c69 | Triage

Sharing

General

Target

2cf858176c2795185f9767846620bae7_JaffaCakes118
Size

731KB
Sample

240708-tln3csxbjr
MD5

2cf858176c2795185f9767846620bae7
SHA1

06b735a487693b23c0c32dd0bb2661c76cc678eb
SHA256

bb6bb57641cdea7dac73f83c228645228173f771c6a3931df340d94e51b09c69
SHA512

55be78584461981182770466577aa5bf3800d66660c329d7f27c12e5951c46f14df2d3aa293632a281aa03b825c0149810216873f455539c1fffb7a99e868660
SSDEEP

12288:QqS5kz4IYscIuLfBemSZVWfKAJ9OjtNqvv3T/yF3Z4mxx9JW34D7qoOiMEDBni1n:QqSQNuL5kZVowtgvvD/yQmXnWoP+pEDs

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  2cf858176c2795185f9767846620bae7_JaffaCakes118
- Size
  
  731KB
- MD5
  
  2cf858176c2795185f9767846620bae7
- SHA1
  
  06b735a487693b23c0c32dd0bb2661c76cc678eb
- SHA256
  
  bb6bb57641cdea7dac73f83c228645228173f771c6a3931df340d94e51b09c69
- SHA512
  
  55be78584461981182770466577aa5bf3800d66660c329d7f27c12e5951c46f14df2d3aa293632a281aa03b825c0149810216873f455539c1fffb7a99e868660
- SSDEEP
  
  12288:QqS5kz4IYscIuLfBemSZVWfKAJ9OjtNqvv3T/yF3Z4mxx9JW34D7qoOiMEDBni1n:QqSQNuL5kZVowtgvvD/yQmXnWoP+pEDs
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2