00bbd692d9876a1f076cafd287610cf8e6f8b929b0c2c117676b0714c12cab1f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3781ec2d5c3704d79bb46d276642e89f_JaffaCakes118
Size

376KB
Sample

240711-dtt1kswenq
MD5

3781ec2d5c3704d79bb46d276642e89f
SHA1

e84dead60655f1d64a2b5938073a75c8ffbe39ad
SHA256

00bbd692d9876a1f076cafd287610cf8e6f8b929b0c2c117676b0714c12cab1f
SHA512

1f38573a14f31e1de8c93e3b1403723268c181edc1abf4614e0d5217d3be88778252c09aec820fa7fb2f729e034210fd563e2b230472a73557922b0e629c4bb8
SSDEEP

6144:krT/et0DyEBu9F2idZecnl20lHRxp3gXe0M6E81xS0WcHpsFbBq9:krTW2CF3Z4mxxF0MHoTAFb+

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  3781ec2d5c3704d79bb46d276642e89f_JaffaCakes118
- Size
  
  376KB
- MD5
  
  3781ec2d5c3704d79bb46d276642e89f
- SHA1
  
  e84dead60655f1d64a2b5938073a75c8ffbe39ad
- SHA256
  
  00bbd692d9876a1f076cafd287610cf8e6f8b929b0c2c117676b0714c12cab1f
- SHA512
  
  1f38573a14f31e1de8c93e3b1403723268c181edc1abf4614e0d5217d3be88778252c09aec820fa7fb2f729e034210fd563e2b230472a73557922b0e629c4bb8
- SSDEEP
  
  6144:krT/et0DyEBu9F2idZecnl20lHRxp3gXe0M6E81xS0WcHpsFbBq9:krTW2CF3Z4mxxF0MHoTAFb+
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2