35552ec91930abd1093c02c3de9eb9774c55159fb1fa701a40207bae56c8cb5f | Triage

Sharing

General

Target

303cc963f35aa899921ae10f705b5557_JaffaCakes118
Size

56KB
Sample

240709-nwh17sthja
MD5

303cc963f35aa899921ae10f705b5557
SHA1

3a15c3e631f3b206d23d0d79fc5fa08e27f00ed3
SHA256

35552ec91930abd1093c02c3de9eb9774c55159fb1fa701a40207bae56c8cb5f
SHA512

bf7d8c3c90d16cd3b9be9ebbc25041b4a529aae5cfa05bc53467244960675a83800a9f6e058d1b7eef260e3759e4444ffd1db03ae778fd816dc3403694eb6eba
SSDEEP

1536:2W1uBPtkyN1x4iDZkpY8ibNvU2bfIkdKtvkRc:6qk4ite/2Vd/y

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  303cc963f35aa899921ae10f705b5557_JaffaCakes118
- Size
  
  56KB
- MD5
  
  303cc963f35aa899921ae10f705b5557
- SHA1
  
  3a15c3e631f3b206d23d0d79fc5fa08e27f00ed3
- SHA256
  
  35552ec91930abd1093c02c3de9eb9774c55159fb1fa701a40207bae56c8cb5f
- SHA512
  
  bf7d8c3c90d16cd3b9be9ebbc25041b4a529aae5cfa05bc53467244960675a83800a9f6e058d1b7eef260e3759e4444ffd1db03ae778fd816dc3403694eb6eba
- SSDEEP
  
  1536:2W1uBPtkyN1x4iDZkpY8ibNvU2bfIkdKtvkRc:6qk4ite/2Vd/y
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2