ee1a76a3813dd1647293026b6f1bf9a2c91f2891e5204541dc6f322db844cac7 | Triage

Sharing

General

Target

357de0a2e1ffa359ed132eb59504b434_JaffaCakes118
Size

725KB
Sample

240710-tw3y9sxfnn
MD5

357de0a2e1ffa359ed132eb59504b434
SHA1

2e3119f7a71618f4a62204c8754fb1139b35a622
SHA256

ee1a76a3813dd1647293026b6f1bf9a2c91f2891e5204541dc6f322db844cac7
SHA512

840fe82f941475ca67cdd14610b18fa246e78a8a93d23ad6afdb1830668d686f15af4e5f5e4f190f9e484e22740d3e7b13b4aad5f5d9c2a25b865b8b7deaaf1d
SSDEEP

12288:xoZFZ3keFABgoG1DNJCI8nJ/X2vc1YNJJor0Ll7XmermR0Ew:SVhAyh+JvbYU0Z7Fro0d

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  357de0a2e1ffa359ed132eb59504b434_JaffaCakes118
- Size
  
  725KB
- MD5
  
  357de0a2e1ffa359ed132eb59504b434
- SHA1
  
  2e3119f7a71618f4a62204c8754fb1139b35a622
- SHA256
  
  ee1a76a3813dd1647293026b6f1bf9a2c91f2891e5204541dc6f322db844cac7
- SHA512
  
  840fe82f941475ca67cdd14610b18fa246e78a8a93d23ad6afdb1830668d686f15af4e5f5e4f190f9e484e22740d3e7b13b4aad5f5d9c2a25b865b8b7deaaf1d
- SSDEEP
  
  12288:xoZFZ3keFABgoG1DNJCI8nJ/X2vc1YNJJor0Ll7XmermR0Ew:SVhAyh+JvbYU0Z7Fro0d
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2