534b2f21a17b6710422eddfb78d11e07c99abe086af0895d694869c1ca24b000 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3941108bc21b6b7568b058ad3a00026d_JaffaCakes118
Size

9KB
Sample

240711-qe4mpazeqa
MD5

3941108bc21b6b7568b058ad3a00026d
SHA1

fd1729d9bf72d8a6cff97d9f5ce35da53d9de6b4
SHA256

534b2f21a17b6710422eddfb78d11e07c99abe086af0895d694869c1ca24b000
SHA512

d47c9f77c7ff857f6d608606162a97cc46ad26724239feb334f61d1a8ffdd150f0b8b46a3f304daea905b2efbbecfb50837a402fb6691a2716e0cd00fdc0c7e4
SSDEEP

192:YCoui32kFeiIve13FHiZbLZD/V6fvx8x/otVHh7aa:0ui32FiI2tFCbzIXOx/67j

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3941108bc21b6b7568b058ad3a00026d_JaffaCakes118
- Size
  
  9KB
- MD5
  
  3941108bc21b6b7568b058ad3a00026d
- SHA1
  
  fd1729d9bf72d8a6cff97d9f5ce35da53d9de6b4
- SHA256
  
  534b2f21a17b6710422eddfb78d11e07c99abe086af0895d694869c1ca24b000
- SHA512
  
  d47c9f77c7ff857f6d608606162a97cc46ad26724239feb334f61d1a8ffdd150f0b8b46a3f304daea905b2efbbecfb50837a402fb6691a2716e0cd00fdc0c7e4
- SSDEEP
  
  192:YCoui32kFeiIve13FHiZbLZD/V6fvx8x/otVHh7aa:0ui32FiI2tFCbzIXOx/67j
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2