a15b5c1225d0b4ab5cb8e61234b112f3b0bbfeb3095b1450ee1da9521bdc669c | Triage

Sharing

General

Target

334b12180f6f32d8ec1a2df003f831c3_JaffaCakes118
Size

114KB
Sample

240710-e2clyawfrn
MD5

334b12180f6f32d8ec1a2df003f831c3
SHA1

09bbac309c6d152343fe79ab6f3d1e5c0ee35e55
SHA256

a15b5c1225d0b4ab5cb8e61234b112f3b0bbfeb3095b1450ee1da9521bdc669c
SHA512

e90a0b6f22001540640651c7b2bbf761690a96258c9e10c64441308e49261e0020f9d960949da9abbf4a1aa998bb6cc7c1e04c31fdcd669779db8d7dc4b3c857
SSDEEP

3072:WsAnKz77K615on6sq1qyyQ7uDk/9VxRBOLp:Ws7bKU5onIfaDK9XR0L

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  334b12180f6f32d8ec1a2df003f831c3_JaffaCakes118
- Size
  
  114KB
- MD5
  
  334b12180f6f32d8ec1a2df003f831c3
- SHA1
  
  09bbac309c6d152343fe79ab6f3d1e5c0ee35e55
- SHA256
  
  a15b5c1225d0b4ab5cb8e61234b112f3b0bbfeb3095b1450ee1da9521bdc669c
- SHA512
  
  e90a0b6f22001540640651c7b2bbf761690a96258c9e10c64441308e49261e0020f9d960949da9abbf4a1aa998bb6cc7c1e04c31fdcd669779db8d7dc4b3c857
- SSDEEP
  
  3072:WsAnKz77K615on6sq1qyyQ7uDk/9VxRBOLp:Ws7bKU5onIfaDK9XR0L
Score

7^/10

persistence
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2