b1aa8b78b768656229b8e86e147acc04e0627af190e33d88a0828fdeb96490fd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

336d136071b9f6ba90811b0098a6db46_JaffaCakes118
Size

874KB
Sample

240710-fw18saycpk
MD5

336d136071b9f6ba90811b0098a6db46
SHA1

3510b5d267ac10881e4b4e3592a87d845c1ef810
SHA256

b1aa8b78b768656229b8e86e147acc04e0627af190e33d88a0828fdeb96490fd
SHA512

fb2c2d728a8a05bd80843d16265a5b9b011658eb1579a125bdfc49f8430f7728d2883c3658a293ad710e5eb0b0b0d3702171ae158025d966d90d063050e65acb
SSDEEP

24576:Dq8zn0p2OfxcWxrCtZmd2jMeqQyyf0YkrFhYp:Dq8zn0p2O6WB+Zu2XqjZ2

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  336d136071b9f6ba90811b0098a6db46_JaffaCakes118
- Size
  
  874KB
- MD5
  
  336d136071b9f6ba90811b0098a6db46
- SHA1
  
  3510b5d267ac10881e4b4e3592a87d845c1ef810
- SHA256
  
  b1aa8b78b768656229b8e86e147acc04e0627af190e33d88a0828fdeb96490fd
- SHA512
  
  fb2c2d728a8a05bd80843d16265a5b9b011658eb1579a125bdfc49f8430f7728d2883c3658a293ad710e5eb0b0b0d3702171ae158025d966d90d063050e65acb
- SSDEEP
  
  24576:Dq8zn0p2OfxcWxrCtZmd2jMeqQyyf0YkrFhYp:Dq8zn0p2O6WB+Zu2XqjZ2
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2