bc39c212ea28846395e69f52bb9f3d304d7eccab39ae8532292077b4d79939ac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3998ac8675e84e419e6ab027b5f46a50_JaffaCakes118
Size

203KB
Sample

240711-sbn4ya1dmp
MD5

3998ac8675e84e419e6ab027b5f46a50
SHA1

bcfff38c7d59fb65e35cb6c051fb93642bda6d67
SHA256

bc39c212ea28846395e69f52bb9f3d304d7eccab39ae8532292077b4d79939ac
SHA512

668f1a604ce0f72cb4210e0dedf2d7c1b5509ddccf1d3e982387467b38ccdfcc3114198788df45765f8519778c97b670f8fe8f464b351c274af1aac340383b50
SSDEEP

6144:cpCo7JfCSBXfvRhwwzxdMo3bjqmNrQFJJu7pMh51d0:27ESCoFXqmNrhuh51i

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  3998ac8675e84e419e6ab027b5f46a50_JaffaCakes118
- Size
  
  203KB
- MD5
  
  3998ac8675e84e419e6ab027b5f46a50
- SHA1
  
  bcfff38c7d59fb65e35cb6c051fb93642bda6d67
- SHA256
  
  bc39c212ea28846395e69f52bb9f3d304d7eccab39ae8532292077b4d79939ac
- SHA512
  
  668f1a604ce0f72cb4210e0dedf2d7c1b5509ddccf1d3e982387467b38ccdfcc3114198788df45765f8519778c97b670f8fe8f464b351c274af1aac340383b50
- SSDEEP
  
  6144:cpCo7JfCSBXfvRhwwzxdMo3bjqmNrQFJJu7pMh51d0:27ESCoFXqmNrhuh51i
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2