2d7ae1ff5af9cd208a4aa44ba20d39c17f21808af58e4e72784cd8c1d25cf2f0 | Triage

Sharing

General

Target

36313b34672b4ea0a85f400f540a31c2_JaffaCakes118
Size

75KB
Sample

240710-ywhqjszelb
MD5

36313b34672b4ea0a85f400f540a31c2
SHA1

51c4529817debce90c360eff6933da77eec4f49a
SHA256

2d7ae1ff5af9cd208a4aa44ba20d39c17f21808af58e4e72784cd8c1d25cf2f0
SHA512

4b8ad94ec4f824998ce9fd043e32c328ba658aaa077de8ab332944ac37d323c197a4cf6f5202135282f2ad91baa3e0724e872a8a823ba84e6efad0453f653a37
SSDEEP

768:hh1UnihALUAeIiLKnAZBJ5BeL1axR2bLKQXvdEHxe3BD3vFGReeD/5A99aZjaEja:vunUIiPZdBGIEfd53Z3vE7i9ZE15xE

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  36313b34672b4ea0a85f400f540a31c2_JaffaCakes118
- Size
  
  75KB
- MD5
  
  36313b34672b4ea0a85f400f540a31c2
- SHA1
  
  51c4529817debce90c360eff6933da77eec4f49a
- SHA256
  
  2d7ae1ff5af9cd208a4aa44ba20d39c17f21808af58e4e72784cd8c1d25cf2f0
- SHA512
  
  4b8ad94ec4f824998ce9fd043e32c328ba658aaa077de8ab332944ac37d323c197a4cf6f5202135282f2ad91baa3e0724e872a8a823ba84e6efad0453f653a37
- SSDEEP
  
  768:hh1UnihALUAeIiLKnAZBJ5BeL1axR2bLKQXvdEHxe3BD3vFGReeD/5A99aZjaEja:vunUIiPZdBGIEfd53Z3vE7i9ZE15xE
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2