deac2e4adb04727098c7ff6c906155cf0129c1954f4812d0d9f5931b6bad1249 | Triage

Sharing

General

Target

30a54689944b5d90541a6c82d84e9715_JaffaCakes118
Size

662KB
Sample

240709-q61p4sxblm
MD5

30a54689944b5d90541a6c82d84e9715
SHA1

6e4f8cf54e070c8fb5835cac6bf6bd3a958022b6
SHA256

deac2e4adb04727098c7ff6c906155cf0129c1954f4812d0d9f5931b6bad1249
SHA512

e44da03cd82cc500b911bd1aa8e0e554bafca3e477728ee1c41d67a719487137c157c014a0f19dd1b22237d24b2007907a73408ed8effc540d8942ae48863c2e
SSDEEP

12288:uHTAX0i7fsqO8Qhl4Aw/IeaWZF3Z4mxx6Q4AMmlo9QNLnn31:uHT1i7fs1D6A8aWZQmX6Q4AMb9i31

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  30a54689944b5d90541a6c82d84e9715_JaffaCakes118
- Size
  
  662KB
- MD5
  
  30a54689944b5d90541a6c82d84e9715
- SHA1
  
  6e4f8cf54e070c8fb5835cac6bf6bd3a958022b6
- SHA256
  
  deac2e4adb04727098c7ff6c906155cf0129c1954f4812d0d9f5931b6bad1249
- SHA512
  
  e44da03cd82cc500b911bd1aa8e0e554bafca3e477728ee1c41d67a719487137c157c014a0f19dd1b22237d24b2007907a73408ed8effc540d8942ae48863c2e
- SSDEEP
  
  12288:uHTAX0i7fsqO8Qhl4Aw/IeaWZF3Z4mxx6Q4AMmlo9QNLnn31:uHT1i7fs1D6A8aWZQmX6Q4AMb9i31
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2