13bbc671966e78d95bc28f99aadd1bf9d9c563ce5630b3523d5b22fa12c032a1 | Triage

Sharing

General

Target

3577f4702582432300f89e998ea60a82_JaffaCakes118
Size

20KB
Sample

240710-trhsjaxdkq
MD5

3577f4702582432300f89e998ea60a82
SHA1

eca085692f561bc655fd7b8b0a4f0fcac6f27bfa
SHA256

13bbc671966e78d95bc28f99aadd1bf9d9c563ce5630b3523d5b22fa12c032a1
SHA512

1e91595f66fdcf0846858b526b0ff1e4ebc418a95dcfc1d5bbf90e08670b7a45e019e72dd43975275b81a7ea40cf10af6b51299f4c9278c127e76e308912cc2e
SSDEEP

384:bO2OEHdn0QfuLNExpYROROJWHLyRFqKv8sNPeKl3C1J9:RHlhQExpoOYSLy1vZ53C1D

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  3577f4702582432300f89e998ea60a82_JaffaCakes118
- Size
  
  20KB
- MD5
  
  3577f4702582432300f89e998ea60a82
- SHA1
  
  eca085692f561bc655fd7b8b0a4f0fcac6f27bfa
- SHA256
  
  13bbc671966e78d95bc28f99aadd1bf9d9c563ce5630b3523d5b22fa12c032a1
- SHA512
  
  1e91595f66fdcf0846858b526b0ff1e4ebc418a95dcfc1d5bbf90e08670b7a45e019e72dd43975275b81a7ea40cf10af6b51299f4c9278c127e76e308912cc2e
- SSDEEP
  
  384:bO2OEHdn0QfuLNExpYROROJWHLyRFqKv8sNPeKl3C1J9:RHlhQExpoOYSLy1vZ53C1D
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2