bbcee4f0b127da013eb6c02a20cccb28fc41a848b4765b9b3ce136a7154e8651 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

364207f4224d4b95bdc4f983b82569e2_JaffaCakes118
Size

13KB
Sample

240710-y82n7ayckm
MD5

364207f4224d4b95bdc4f983b82569e2
SHA1

f264b02c27f6566e66d9ff4935d64f189f2da5b4
SHA256

bbcee4f0b127da013eb6c02a20cccb28fc41a848b4765b9b3ce136a7154e8651
SHA512

6636648463f8d1db52bfe1d63f3c81629f7af88984f3f1adb8041a514be33b472f22b41460d78e9522812c534bbaae95aee8e901cea5fd1b94520b2b81d251b4
SSDEEP

384:Kx4hKXHCuaP9yuxa+qZ4zsVCqTcrK7rPZ:ccAssxcrK7V

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  364207f4224d4b95bdc4f983b82569e2_JaffaCakes118
- Size
  
  13KB
- MD5
  
  364207f4224d4b95bdc4f983b82569e2
- SHA1
  
  f264b02c27f6566e66d9ff4935d64f189f2da5b4
- SHA256
  
  bbcee4f0b127da013eb6c02a20cccb28fc41a848b4765b9b3ce136a7154e8651
- SHA512
  
  6636648463f8d1db52bfe1d63f3c81629f7af88984f3f1adb8041a514be33b472f22b41460d78e9522812c534bbaae95aee8e901cea5fd1b94520b2b81d251b4
- SSDEEP
  
  384:Kx4hKXHCuaP9yuxa+qZ4zsVCqTcrK7rPZ:ccAssxcrK7V
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2