89770377263d861aa33933a304f9d47f7ae3cb3c091718f96c41833bfdad19da | Triage

Sharing

Copy URL Twitter E-mail

General

Target

33421e3896caf7336188eeb53a6255fb_JaffaCakes118
Size

46KB
Sample

240710-etmryawcqm
MD5

33421e3896caf7336188eeb53a6255fb
SHA1

ce3287892b93a232854bfafa709f02685ce89e53
SHA256

89770377263d861aa33933a304f9d47f7ae3cb3c091718f96c41833bfdad19da
SHA512

c25d56b9aa7704a11f3eeadbf51a945d8b6be3f30adb99d3a3d99867cd28c44ee2b9e48547f8bd7eb33689f292a1cb973f3e77677fc96f9765290e41c77ecbbe
SSDEEP

768:y8emlttVCRY6o6ob1Zlc2pH0AyB9jxuio8E2BcK4j4d7ELlI4DzxuhIO+fqtQ54F:y8JlzVXT9hTc0aFbXcKk4+Cosh2fqtQ+

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  33421e3896caf7336188eeb53a6255fb_JaffaCakes118
- Size
  
  46KB
- MD5
  
  33421e3896caf7336188eeb53a6255fb
- SHA1
  
  ce3287892b93a232854bfafa709f02685ce89e53
- SHA256
  
  89770377263d861aa33933a304f9d47f7ae3cb3c091718f96c41833bfdad19da
- SHA512
  
  c25d56b9aa7704a11f3eeadbf51a945d8b6be3f30adb99d3a3d99867cd28c44ee2b9e48547f8bd7eb33689f292a1cb973f3e77677fc96f9765290e41c77ecbbe
- SSDEEP
  
  768:y8emlttVCRY6o6ob1Zlc2pH0AyB9jxuio8E2BcK4j4d7ELlI4DzxuhIO+fqtQ54F:y8JlzVXT9hTc0aFbXcKk4+Cosh2fqtQ+
Score

8^/10

persistence
- Drops file in Drivers directory
- Sets service image path in registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2