c03e21128f7506d3e0398fd37e2ab94d304f7c4d8f67ba91634d560fd072cd51 | Triage

Sharing

General

Target

325056c015e1be54d7c4a14e2856f1e1_JaffaCakes118
Size

74KB
Sample

240709-2v44yasfkb
MD5

325056c015e1be54d7c4a14e2856f1e1
SHA1

4f671615f64b3d105187f9b484eb54786c256deb
SHA256

c03e21128f7506d3e0398fd37e2ab94d304f7c4d8f67ba91634d560fd072cd51
SHA512

69181208de24e7e83f638dec1a74c27e0899172148a12b8e9e48760230c5df9244ef3cb30c1335165fb6bcaa05bb92f209ed08cd77256aeb0725c6ad80aaf978
SSDEEP

1536:9Jpc6wJV+AFXXqxIxzXP7qcKqCcL9JMSn15K:9JpqJVxKjcL9JMSn15K

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  325056c015e1be54d7c4a14e2856f1e1_JaffaCakes118
- Size
  
  74KB
- MD5
  
  325056c015e1be54d7c4a14e2856f1e1
- SHA1
  
  4f671615f64b3d105187f9b484eb54786c256deb
- SHA256
  
  c03e21128f7506d3e0398fd37e2ab94d304f7c4d8f67ba91634d560fd072cd51
- SHA512
  
  69181208de24e7e83f638dec1a74c27e0899172148a12b8e9e48760230c5df9244ef3cb30c1335165fb6bcaa05bb92f209ed08cd77256aeb0725c6ad80aaf978
- SSDEEP
  
  1536:9Jpc6wJV+AFXXqxIxzXP7qcKqCcL9JMSn15K:9JpqJVxKjcL9JMSn15K
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2