0529e80319219dd3187b48b44bcd851d7446acd1fc43c685fe92d3b6ea1e7d81 | Triage

Sharing

General

Target

2e535d7010849b0948db82df9035f4a2_JaffaCakes118
Size

13KB
Sample

240709-age44swdmp
MD5

2e535d7010849b0948db82df9035f4a2
SHA1

526203dfc3f0641d8337db765e1c7895d025f140
SHA256

0529e80319219dd3187b48b44bcd851d7446acd1fc43c685fe92d3b6ea1e7d81
SHA512

cbfad8e96870ab77bf48960682bd9dc83f786870da432b2d5cf2495755841a8b37d11f00f3d6c37bca6cd9b1a29f4f4cd89ab496acb0992f53cdc90a475cabff
SSDEEP

192:4gPWgKRVzOJ4f9+hW+E1tWTUhOaQyzhRipwIFhg2n8cLZGxBEP4oyn0Fg7:4g+gqzOJf4QryzhQpjrgpcLZGxBq4am

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2e535d7010849b0948db82df9035f4a2_JaffaCakes118
- Size
  
  13KB
- MD5
  
  2e535d7010849b0948db82df9035f4a2
- SHA1
  
  526203dfc3f0641d8337db765e1c7895d025f140
- SHA256
  
  0529e80319219dd3187b48b44bcd851d7446acd1fc43c685fe92d3b6ea1e7d81
- SHA512
  
  cbfad8e96870ab77bf48960682bd9dc83f786870da432b2d5cf2495755841a8b37d11f00f3d6c37bca6cd9b1a29f4f4cd89ab496acb0992f53cdc90a475cabff
- SSDEEP
  
  192:4gPWgKRVzOJ4f9+hW+E1tWTUhOaQyzhRipwIFhg2n8cLZGxBEP4oyn0Fg7:4g+gqzOJf4QryzhQpjrgpcLZGxBq4am
Score

8^/10

persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2